0.016 Low
EPSS
Percentile
87.5%
The plugin does not validate user input used in a path, which could allow unauthenticated users to read arbitrary files via a traversal attack