CVE-2015-4066 | GigPress Plugin up to 2.3.8 on WordPress admin/handlers.php show_venue_id sql injection (ID 132036 / EDB-37109)
A vulnerability was found in GigPress Plugin up to 2.3.8 on WordPress and classified as problematic. Affected by this issue is some unknown functionality of the file admin/handlers.php. The manipulation of the argument show_venue_id leads to sql injection.
This vulnerability is handled as CVE-2015-4066. The attack may be launched remotely. Furthermore, there is an exploit available.
It is recommended to upgrade the affected component.