CVE-2015-9496 (freshmail-newsletter)

The freshmail-newsletter plugin before 1.6 for WordPress has shortcode.php SQL Injection via the ‘FM_form id=’ substring.

View Full Alert