RSS   Vulnerabilities for 'Image gallery'   RSS

2014-09-22
 
CVE-2014-7153

CWE-89
 

 
SQL injection vulnerability in the editgallery function in admin/gallery_func.php in the Huge-IT Image Gallery plugin 1.0.1 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the removeslide parameter to wp-admin/admin.php.

 

 >>> Vendor: Huge-it 9 Products
Image gallery
Huge-it image gallery
Video gallery
Portfolio gallery
Huge-it catalog
Portfolio gallery manager
Slideshow
Catalog
Slider


Copyright 2019, cxsecurity.com

 

Back to Top