WordPress · All-In-One-Wp-Security-And-Firewall · CVE-2015-0894
**Name of the Vulnerable Software and Affected Versions**
All In One WP Security & Firewall plugin versions prior to 3.8.8
**Description**
The issue allows remote attackers to execute arbitrary SQL commands.
**Recommendations**
For All In One WP Security & Firewall plugin versions prior to 3.8.8, update to version 3.8.8 or later to resolve the issue.