Lucene search

CVE-2019-16119

🗓️ 08 Sep 2019 23:10:15Reported by mitreType

cve🔗 web.nvd.nist.gov👁 147 Views🌐 2 Media mentions

SQL injection in 10Web Photo Gallery plugin for WordPress via album_id parameter

Reporter	Title	Published	Views	Family All 10
0day.today	WordPress Photo Gallery 1.5.34 Plugin - SQL Injection Vulnerability	10 Sep 201900:00	–	zdt
exploitpack	WordPress Plugin Photo Gallery 1.5.34 - SQL Injection	10 Sep 201900:00	–	exploitpack
Prion	Sql injection	8 Sep 201923:15	–	prion
Packet Storm	WordPress Photo Gallery 1.5.34 SQL Injection	10 Sep 201900:00	–	packetstorm
Patchstack	WordPress Photo Gallery by 10Web plugin <= 1.5.34 - SQL Injection (SQLi) vulnerability	9 Sep 201900:00	–	patchstack
Cvelist	CVE-2019-16119	8 Sep 201922:48	–	cvelist
Exploit DB	WordPress Plugin Photo Gallery 1.5.34 - SQL Injection	10 Sep 201900:00	–	exploitdb
NVD	CVE-2019-16119	8 Sep 201923:15	–	nvd
WPVulnDB	Photo Gallery by 10Web < 1.5.35 - SQL Injection & XSS	8 Sep 201900:00	–	wpvulndb
Check Point Advisories	SQL Servers Time-based SQL Injection (CVE-2011-4710; CVE-2019-13978; CVE-2019-16065; CVE-2019-16119; CVE-2019-16383; CVE-2019-16692; CVE-2020-15468; CVE-2020-26518; CVE-2020-29284; CVE-2021-21915; CVE-2021-21916; CVE-2021-21917; CVE-2022-23337; CVE-2022-25149)	26 May 201400:00	–	checkpoint_advisories

Nvd

Node

10web photo_galleryRange<1.5.35wordpress

Source	Link
wordpress	www.wordpress.org/plugins/photo-gallery/
wpvulndb	www.wpvulndb.com/vulnerabilities/9872
plugins	www.plugins.trac.wordpress.org/changeset/2150912/photo-gallery/trunk/admin/controllers/Albumsgalleries.php
packetstormsecurity	www.packetstormsecurity.com/files/154432/WordPress-Photo-Gallery-1.5.34-SQL-Injection.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

08 Sep 2019 23:15Current

9.8High risk

Vulners AI Score9.8

CVSS27.5

CVSS39.8

EPSS0.696

CWE-89