WordPress is the WordPress Foundation’s set of blogging platforms developed using the PHP language. The platform supports the hosting of personal blog sites on PHP and MySQL servers.The WordPress WPcalc plugin in version 2.1 and earlier is vulnerable to SQL injection, which stems from the plugin’s lack of validation of the value of the did parameter against external input SQL statements. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.