Auth. SQL Injection (SQLi) vulnerability discovered by Kunal Sharma (University of Kaiserslautern) and Daniel Krohmer (Fraunhofer IESE) in the WordPress OWM Weather plugin (versions <= 5.6.8).
Update the WordPress OWM Weather plugin to the latest available version (at least 5.6.9).