CVE-2021-39312

Name of the Vulnerable Software and Affected Versions: True Ranker plugin versions <= 2.2.2

Description: The issue allows arbitrary files, including sensitive configuration files such as wp-config.php, to be accessed via the src parameter found in the ~/admin/vendor/datatables/examples/resources/examples.php file. This could potentially expose sensitive information.

Recommendations: For True Ranker plugin versions <= 2.2.2, consider updating to a version greater than 2.2.2 to resolve the issue. As a temporary workaround, restrict access to the src parameter in the ~/admin/vendor/datatables/examples/resources/examples.php file to minimize the risk of exploitation.