EPSS
Percentile
55.5%
The unite-gallery-lite plugin before 1.5 for WordPress has CSRF and SQL injection via wp-admin/admin.php galleryid or id parameters.
packetstormsecurity.com/files/132842/
wordpress.org/plugins/unite-gallery-lite/#developers
wpvulndb.com/vulnerabilities/8113