WordPress Plugin Flexi Quote Rotator SQL Injection and Cross-Site Request Forgery Vulnerabilities

WordPress Plugin Flexi Quote Rotator is prone to a cross-site request forgery vulnerability and an SQL injection vulnerability. Attackers may exploit these issues to compromise the application access or modify data exploit vulnerabilities in the underlying database or to perform unauthorized actions by enticing a logged-in user to visit a malicious site. WordPress Plugin Flexi Quote Rotator version 0.9 is vulnerable prior versions may also be affected.