Due bad solution of the database abstraction library WordPress exposes itself towards SQL Injection and validation bypass. Beside WordPress itself this issue have huge impact towards complete WP ecosystem. Up to WordPress 4.8.1 is vulnerable, but this time attack is dependent from another plugins / themes / setup.
Slavco
No
2017-08-24 (about 5 years ago)
2017-09-20 (about 5 years ago)
2019-11-01 (about 3 years ago)