Information Disclosure in Simple Gmail Login Plugin for WordPress

Information Disclosure in Simple Gmail Login Plugin for WordPress

CVE-2012-6313 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

simple-gmail-login.php in the Simple Gmail Login plugin before 1.1.4 for WordPress allows remote attackers to obtain sensitive information via a request that lacks a timezone, leading to disclosure of the installation path in a stack trace.

Learn more about our Wordpress Pen Testing.