Due to lack of proper sanitization in WP_Meta_Query, there's potential for blind SQL Injection.
SQLI
Ben Bidner
Yes
2022-01-06 (about 7 months ago)
2022-04-16 (about 3 months ago)