SQL Injection
johnpbloch/wordpress-core is vulnerable to sql injection. The vulnerability exists due to the lack of sanitization in the WPQuery in the cleanquery function of class-wp-tax-query.php, allowing an attacker to inject and execute malicious input through the plugins or themes...