Lucene search
China National Vulnerability DatabaseCNVD-2022-59817HistoryMay 07, 2022 - 12:00 a.m.
WordPress Photo Gallery plugin SQL注入漏洞
2022-05-0700:00:00
China National Vulnerability Database
www.cnvd.org.cn
13
0.002 Low
EPSS
Percentile
54.0%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plug-in. A SQL injection vulnerability exists in versions prior to WordPress Photo Gallery plugin 1.6.3, which stems from the plugin’s inability to properly escape the filter_tag parameter. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress photo gallery plugin | lt | 1.6.3 |
Related
cvelist
cvelist
CVE-2022-1281 Photo Gallery < 1.6.3 - Unauthenticated SQL Injection
2022-05-02 16:05:57
checkpoint_advisories
checkpoint_advisories
WordPress Photo Gallery Plugin SQL Injection (CVE-2022-1281)
2022-11-09 00:00:00
cve
cve
CVE-2022-1281
2022-05-02 16:15:09
wpvulndb
wpvulndb
Photo Gallery < 1.6.3 - Unauthenticated SQL Injection
2022-04-11 00:00:00
patchstack
patchstack
prion
prion
Sql injection
2022-05-02 16:15:00
nvd
nvd
CVE-2022-1281
2022-05-02 16:15:09
wpexploit
wpexploit
Photo Gallery < 1.6.3 - Unauthenticated SQL Injection
2022-04-11 00:00:00
openvas
openvas
WordPress Photo Gallery Plugin < 1.6.3 Multiple Vulnerabilities
2022-05-05 00:00:00