The WP Adminify plugin for WordPress is vulnerable to a security issue called SQL Injection. This affects all versions of the plugin up to 3.1.7. This vulnerability allows someone with administrator access to the WordPress website to access sensitive information from the database. The vulnerability occurs because of a lack of security when dealing with user supplied parameters and a lack of preparation for existing SQL queries.