This plugin does not adequately sanitize parameters before performing file operations.  Local file inclusion attacks may be possible by administrators.

No other issues found.

The plugin contains or is likely to contain a vulnerability which could be exploited by a privileged user to affect the site’s confidentiality, integrity or availability in a manner exceeding their privileges: