CVE-2017-14723

Name of the Vulnerable Software and Affected Versions WordPress versions prior to 4.8.2

Description The issue arises from the mishandling of % characters and additional placeholder values in $wpdb->prepare, which could enable SQL injection attacks if plugins or themes are not properly secured.

Recommendations For versions prior to 4.8.2, update to version 4.8.2 or later to resolve the issue.