WordPress Plugin eShop Code Injection - CVE-2015-3421

WordPress Plugin eShop is prone to a vulnerability that lets remote attackers inject and execute arbitrary code because the application fails to sanitize user-supplied input. Attackers can exploit this issue to execute arbitrary code within the context of the affected webserver process this may result in total compromise of the web server. WordPress Plugin eShop version 6.3.11 is vulnerable prior versions may also be affected.