SQL injection vulnerability in the Another WordPress Classifieds Plugin plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the keywordphrase parameter in a dosearch action.Referenceshttp://packetstormsecurity.com/files/129035/Another-WordPress-Classifieds-Cross-Site-Scripting-SQL-Injection.htmlhttp://www.exploit-db.com/exploits/35204https://exchange.xforce.ibmcloud.com/vulnerabilities/98589
