Wordpress插件Popup Builder SQL注入漏洞

WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.The Wordpress plugin Popup Builder is vulnerable to SQL injection, which stems from the product’s failure to effectively handle special characters in the orderby and order parameters on the administration page. No detailed vulnerability details are available at this time.