EPSS
Percentile
73.3%
Wordpress is vulnerable to SQL injection. The $wpdb->prepare() method creates and executes arbitrary SQL statements within plugins and themes.
$wpdb->prepare()
wordpress.org/news/2017/10/wordpress-4-8-3-security-release/