WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. The WordPress plugin is an application plugin. A file inclusion vulnerability exists in versions of the WordPress plugin Cab fare calculator prior to 1.0.4, which stems from the plugin’s failure to validate controller parameters before using them in a require statement. Failure to validate can be exploited to cause local file inclusion issues.