WordPress is a set of blogging platforms developed by the WordPress (Wordpress) Foundation using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. SQL injection vulnerability exists in versions of WordPress prior to Xllentech English Islamic Calendar plugin 2.6.8, which stems from a failure to clean, escape or validate Post parameters during a delete date operation. An attacker could use this vulnerability to execute SQL commands.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress xllentech english islamic calendar wordpress plugin | lt | 2.6.8 |