The iDangero.us Chop Slider 3 WordPress plugin version 3.4 and prior contains a blind SQL injection in the id parameter of the get_script/index.php page. The injection is passed through GET parameters, and thus must be encoded, and magic_quotes is applied at the server.
c40d3f2150f043263d7f5b593f87cd6eb6ed9507f109b3c2713e5d016de691c2
WordPress ChopSlider3 plugin version 3.4 suffers from a remote SQL injection vulnerability.
cfc7ba3799b36c678dc3edc35d0a5f83e09a6b543c87ba67384476ee4398aafa
WordPress ChopSlider plugin version 3 suffers from a remote SQL injection vulnerability.
e218e1571606da2531f1241428d66e8c95a78bdef1172ab60f7f8313306d3ed9