The AdRotate – Ad manager & AdSense Ads WordPress plugin was affected by a clicktracker.php track Parameter SQL Injection security vulnerability.
packetstormsecurity.com/files/125330/
vulners.com/exploitdb/EDB-ID:31834