Sql injection

2011-11-0221:55:00

PRIOn knowledge base

www.prio-n.com

9.1 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.3%

JSON

SQL injection vulnerability in index.php in the NP_Gallery plugin 0.94 for Nucleus allows remote attackers to execute arbitrary SQL commands via the id parameter in a plugin action.

CPENameOperatorVersion
np_gallery_plugineq0.94

CPE	Name	Operator	Version
	np_gallery_plugin	eq	0.94

References

secunia.com/advisories/40022

www.osvdb.org/65005

www.securityfocus.com/bid/40448

www.vupen.com/english/advisories/2010/1285

exchange.xforce.ibmcloud.com/vulnerabilities/58997

www.exploit-db.com/exploits/12787/