WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. The platform supports personal blogging sites on PHP and MySQL servers. WordPress Wow Forms plugin in version 3.1.3 and earlier has a security vulnerability that stems from the plugin’s did parameter’s lack of validation for external input SQL statements. An authenticated attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.