logoWordPressPluginsThemesAPISubmitContact
search-icon
logo
search-icon
WordPressPluginsThemesAPISubmitContactSecurity Scanner
Register

Photo Gallery <= 1.2.8 - Blind SQL Injection

Description

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin was affected by a Blind SQL Injection security vulnerability.

Affects Plugins

photo-gallery

Fixed in version 1.2.11

References

CVE

CVE-2015-1393

URL

https://seclists.org/bugtraq/2015/Jan/141

URL

https://packetstormsecurity.com/files/130148/

Classification

Type

SQLI

OWASP top 10

A1: Injection

CWE

CWE-89

Miscellaneous

Submitter

ethicalhack3r

Submitter twitter

ethicalhack3r

Verified

No

WPVDB ID

aceaf39c-9e02-4042-92a6-9fd6ddaea094

Timeline

Publicly Published

2015-01-28 (about 6 years ago)

Added

2015-01-28 (about 6 years ago)

Last Updated

2019-10-21 (about 2 years ago)

Our Other Services

WPScan WordPress Security Plugin