Arbitrary File Creation/Upload/Deletion vulnerability discovered by Luan Pedersni in WordPress Library File Manager plugin (versions <= 5.2.2).
Update the WordPress Library File Manager plugin to the latest available version (at least 5.2.3).