Please update now!
The plugin does not escape keys of the fields POST parameter, which could allow high privilege users to perform SQL injections attacks.
Details:
https://wpscan.com/vulnerability/55008a42-eb56-436c-bce0-10ee616d0495
Please update now!
The plugin does not escape keys of the fields POST parameter, which could allow high privilege users to perform SQL injections attacks.
Details:
https://wpscan.com/vulnerability/55008a42-eb56-436c-bce0-10ee616d0495