CVE-2012-10011
CVE-2012-10011 describes a SQL injection in HD FLV PLayer Plugin for WordPress (versions up to 1.7) via the hd_add_media/hd_update_media functions in functions.php. The vulnerability can be triggered remotely by manipulating the name argument, potentially enabling data exposure or modification. A...