CVE-2016-10943

The zx-csv-upload plugin 1 for WordPress has SQL injection via the id parameter.
Source: NIST
CVE-2016-10943