Name of the Vulnerable Software and Affected Versions:

atec Debug plugin for WordPress versions prior to 1.2.23

Description:

The atec Debug plugin for WordPress is susceptible to an arbitrary file read issue. This allows authenticated attackers with Administrator-level access or higher to view the contents of files outside the intended directory through the `custom log` parameter.

Recommendations:

Update the atec Debug plugin to version 1.2.23 or later.