Description
WordPress Plugin Super Refer A Friend is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin Super Refer A Friend version 1.0 is vulnerable.
Remediation
Edit the source code to ensure that errors containing sensitive information aren't displayed to the end user or disable the plugin until a fix is available
References
Related Vulnerabilities
Moodle Improper Encoding or Escaping of Output Vulnerability (CVE-2021-40694)
WordPress Plugin yolink Search for WordPress 'bulkcrawl.php' SQL Injection (1.1.4)
Drupal Core 8.5.x Cross-Site Scripting (8.5.0 - 8.5.1)
WordPress 4.7.x Cross-Domain Flash Injection Vulnerability (4.7 - 4.7.8)
Zope Web Application Server Cryptographic Issues Vulnerability (CVE-2012-6661)