T3N38R15

**Name of the Vulnerable Software and Affected Versions** RobotCPA plugin version 5 for WordPress **Description** The issue allows directory traversal via the `l` parameter in the f.php file. **Recommendations** For RobotCPA plugin version 5, consider restricting access to the f.php file until a patch is available. As a temporary workaround, avoid using the `l` parameter in the affected f.php file to minimize the risk of exploitation.