CVE-2007-2483

Name of the Vulnerable Software and Affected Versions wp-Table plugin for WordPress versions 1.43 and earlier

Description A directory traversal issue exists when register globals is enabled, allowing remote attackers to include and execute arbitrary local files via the wpPATH parameter in the js/wptable-button.php file.

Recommendations For wp-Table plugin for WordPress versions 1.43 and earlier, consider disabling the register globals setting to mitigate the risk of exploitation. Additionally, restrict access to the js/wptable-button.php file to minimize the risk of arbitrary file inclusion. Avoid using the wpPATH parameter in the affected file until the issue is resolved.