Launchpad.net

Launchpad CVE tracker

CVE 2016-10942

The podlove-podcasting-plugin-for-wordpress plugin before 2.3.16 for WordPress has SQL injection via the insert_id parameter exploitable via CSRF.

See the

CVE page on Mitre.org for more details.

References