CVE-2015-9449

The CVE concerns the WordPress plugin Microblog Poster (versions before 1.6.2). A SQL Injection vulnerability exists in the plugin’s admin page (wp-admin/options-general.php?page=microblogposter.php account_id parameter) due to insufficient input validation. Public sources describe the issue as a...