Posted on

Gwolle Guestbook Plugin up to 1.5.3 on WordPress ajaxresponse.php abspath directory traversal

A vulnerability classified as critical was found in Gwolle Guestbook Plugin up to 1.5.3 on WordPress (WordPress Plugin). Affected by this vulnerability is an unknown code block of the file frontend/captcha/ajaxresponse.php. Upgrading to version 1.5.4 eliminates this vulnerability.