WordPress Plugin Advanced Dewplayer Directory Traversal - CVE-2013-7240

WordPress Plugin Advanced Dewplayer is prone to a directory traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue can allow an attacker to obtain sensitive information that could aid in further attacks. WordPress Plugin Advanced Dewplayer version 1.2 is vulnerable prior versions may also be affected.