CVE-2016-10887by Jeremyin Security Bulletinson Posted on August 14, 2019 The all-in-one-wp-security-and-firewall plugin before 4.0.9 for WordPress has multiple SQL injection issues.