Title: ca0s's Replies | WordPress.org

---

# ca0s

  [  ](https://wordpress.org/support/users/ca0s/)

 *   [Profile](https://wordpress.org/support/users/ca0s/)
 *   [Topics Started](https://wordpress.org/support/users/ca0s/topics/)
 *   [Replies Created](https://wordpress.org/support/users/ca0s/replies/)
 *   [Reviews Written](https://wordpress.org/support/users/ca0s/reviews/)
 *   [Topics Replied To](https://wordpress.org/support/users/ca0s/replied-to/)
 *   [Engagements](https://wordpress.org/support/users/ca0s/engagements/)
 *   [Favorites](https://wordpress.org/support/users/ca0s/favorites/)

 Search replies:

## Forum Replies Created

Viewing 1 replies (of 1 total)

 *   Forum: [Plugins](https://wordpress.org/support/forum/plugins-and-hacks/)
    In
   reply to: [[ProPlayer] [Plugin: ProPlayer] SQL inyection](https://wordpress.org/support/topic/plugin-proplayer-sql-inyection/)
 *  [ca0s](https://wordpress.org/support/users/ca0s/)
 * (@ca0s)
 * [15 years, 1 month ago](https://wordpress.org/support/topic/plugin-proplayer-sql-inyection/#post-1991046)
 * I reported it to its author but no response was received.
    You can fix it by 
   editing playlist-controller.php at line 164, replacing:
 * `$xml = $playlistController->getPlaylist($_GET["pp_playlist_id"]);`
 * with
 * `$xml = $playlistController->getPlaylist(mysql_real_escape_string($_GET["pp_playlist_id"]));`
 * Hope it helps you.

Viewing 1 replies (of 1 total)