Lucene search
RedhatCVELIST:CVE-2015-7527HistoryDec 17, 2015 - 7:00 p.m.
CVE-2015-7527
2015-12-1719:00:00
redhat
www.cve.org
3
lib/core.php in the Cool Video Gallery plugin 1.9 for WordPress allows remote attackers to execute arbitrary code via shell metacharacters in the “Width of preview image” and possibly other input fields in the “Video Gallery Settings” page.
References
packetstormsecurity.com/files/134626/WordPress-Cool-Video-Gallery-1.9-Command-Injection.html
www.openwall.com/lists/oss-security/2015/12/02/9
www.securityfocus.com/archive/1/537051/100/0/threaded
www.vapidlabs.com/advisory.php?v=158
wordpress.org/support/topic/command-injection-vulnerability-in-v19
wpvulndb.com/vulnerabilities/8348
Related
wpvulndb
wpvulndb
Cool Video Gallery <= 1.9 - Authenticated Comm& Injection
2015-12-02 00:00:00
prion
prion
Input validation
2015-12-17 19:59:00
packetstorm
packetstorm
WordPress Cool Video Gallery 1.9 Command Injection
2015-12-03 00:00:00
cve
cve
CVE-2015-7527
2015-12-17 19:59:04
patchstack
patchstack
WordPress Cool Video Gallery Plugin <= 1.9 - Command Injection
2015-09-29 00:00:00
zdt
zdt
WordPress Cool Video Gallery 1.9 Command Injection Vulnerability
2015-12-04 00:00:00
nvd
nvd
CVE-2015-7527
2015-12-17 19:59:04