CVE-2015-4018
CVE-2015-4018 is a SQL injection vulnerability in the WordPress plugin FeedWordPress (affected: versions prior to 2015.0514). The flaw is in feedwordpresssyndicationpage.class.php and allows an authenticated attacker to inject arbitrary SQL via the link_ids[] parameter in the syndication Update a...