Unknown · Landing Pages · CVE-2013-6243
**Name of the Vulnerable Software and Affected Versions**
Landing Pages plugin versions 1.2.3 and earlier
**Description**
The issue allows remote attackers to execute arbitrary SQL commands. This is achieved by exploiting the `post` parameter to the "index.php" endpoint.
**Recommendations**
For Landing Pages plugin versions 1.2.3 and earlier, update to a version released after 20131009 to resolve the issue.