WordPress Plugin TheCartPress eCommerce Shopping Cart tcp_class_path Parameter Remote File Include

WordPress Plugin TheCartPress eCommerce Shopping Cart is prone to a remote file include vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue could allow an attacker to compromise the application and the underlying system other attacks are also possible. WordPress Plugin TheCartPress eCommerce Shopping Cart version 1.1.1 is vulnerable prior versions may also be affected.