WordPress is a blogging platform developed by the Wordpress Foundation using the PHP language. A SQL injection vulnerability exists in versions of the WordPress Futurio Extra plugin prior to 1.6.3, which stems from a lack of filtering and escaping of SQL data submitted by users. A highly privileged attacker could exploit this vulnerability to extract data from the database.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress futurio extra plugin | lt | 1.6.3 |