A vulnerability, which was classified as problematic , was found in KaymeePhotography Photocart Link 1.6 on WordPress. The affected element is an unknown function of the file decode.php of the component Configuration Data Handler . Such manipulation of the argument ID leads to improper control of filename for include/require statement in php program ('php remote file inclusion'). This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is traded