CVE-2015-9316
The CVE applies to the WordPress WP Fastest Cache plugin before 0.8.4.9. Vulnerable component: wp-admin/admin-ajax.php?action=wpfc_wppolls_ajax_request, where the poll_id parameter is unsafely used in a SQL query, enabling SQL injection. Root cause: improper sanitization/escaping in the AJAX hand...