📦 Canto

The Canto WordPress plugin has a Remote File Inclusion vulnerability in all versions up to 3.0.8 that allows unauthenticated attackers to include remote files on the server, potentially leading to rem...

This vulnerability allows unauthenticated attackers to execute arbitrary code on WordPress sites running the vulnerable Canto plugin. It affects all WordPress installations using Canto plugin versions...

The Canto plugin for WordPress versions up to 3.0.4 contains a Remote File Inclusion vulnerability via the 'wp_abspath' parameter. This allows unauthenticated attackers to execute arbitrary code on th...