WordPress Form Maker 1.13.3 SQL injection vulnerability


WordPress Form Maker has SQL injection vulnerability. Attackers can cheat the server to execute malicious SQL commands by inserting SQL commands into the Web Form submission or the query string of the domain name or page request.


At present, the manufacturer has issued an upgrade patch to fix the vulnerability.