The Shared Files plugin for WordPress, which is used to upload files and securely share them, has a security vulnerability that allows for sensitive information to be exposed. This can happen when using the export feature and if there is no protected directory in place. This means that attackers without proper authorization can access and extract sensitive data from exported files created by the plugin.