The Rencontre plugin prior to 3.1.3 for WordPress allows SQL Injection via inc/rencontre_widget.php.
boiteasite rencontre