CVE-2016-10942

Name of the Vulnerable Software and Affected Versions podlove-podcasting-plugin-for-wordpress versions prior to 2.3.16

Description The issue concerns SQL injection via the insert id parameter, which is exploitable via CSRF. This allows for potential manipulation of database queries.

Recommendations For versions prior to 2.3.16, update to version 2.3.16 or later to resolve the issue. As a temporary workaround, consider restricting access to the insert id parameter to minimize the risk of exploitation.