WordPress · Fmoblog Plugin · CVE-2009-0968
**Name of the Vulnerable Software and Affected Versions**
fMoblog plugin version 2.1 for WordPress
**Description**
The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the `id` parameter to "index.php".
**Recommendations**
For fMoblog plugin version 2.1, avoid using the `id` parameter in the "index.php" endpoint until the issue is resolved.