WordPress Plugin Sendit WP Newsletter is prone to a blind SQL injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. WordPress Plugin Sendit WP Newsletter version 1.5.9 is vulnerable; prior versions may also be affected.
Update to the latest version
WordPress 2.0.4 Multiple Security Vulnerabilities (2.0.4 - 2.0.4)
WordPress Plugin Awesome Support-WordPress HelpDesk & Support Cross-Site Scripting (6.0.6)
WordPress Plugin Bold Page Builder Security Bypass (2.3.1)
WordPress Plugin WooCommerce Checkout For Digital Goods Cross-Site Request Forgery (2.2)
WordPress Plugin MAC PHOTO GALLERY Arbitrary File Download (3.0)