Lucene search
PRIOn knowledge basePRION:CVE-2014-9097HistoryNov 26, 2014 - 3:59 p.m.
Sql injection
2014-11-2615:59:00
PRIOn knowledge base
www.prio-n.com
5
Multiple SQL injection vulnerabilities in the Apptha WordPress Video Gallery (contus-video-gallery) plugin 2.5, possibly as distributed before 2014-07-23, for WordPress allow (1) remote attackers to execute arbitrary SQL commands via the vid parameter in a myextract action to wp-admin/admin-ajax.php or (2) remote authenticated users to execute arbitrary SQL commands via the playlistId parameter in the newplaylist page or (3) videoId parameter in a newvideo page to wp-admin/admin.php.
| CPE | Name | Operator | Version |
|---|---|---|---|
| contus_video_gallery | eq | 2.5 |
Related
patchstack
patchstack
WordPress Apptha Video Gallery Plugin <= 2.5 - Multiple SQL Injection
2014-11-26 00:00:00
WordPress Video Gallery Plugin 2.5 - Multiple Vulnerabilities
2014-07-24 00:00:00
WordPress Video Gallery Plugin 2.7.0 - SQL Injection
2015-02-12 00:00:00
nvd
nvd
CVE-2014-9097
2014-11-26 15:59:13
zdt
zdt
Wordpress Video Gallery 2.7.0 SQL Injection Vulnerability
2015-02-12 00:00:00
cve
cve
CVE-2014-9097
2022-10-03 16:20:41
checkpoint_advisories
checkpoint_advisories
Wordpress Video Gallery Plugin SQL Injection (CVE-2014-9097)
2015-02-12 00:00:00
cvelist
cvelist
CVE-2014-9097
2022-10-03 16:20:41
wpvulndb
wpvulndb
Contus Video Gallery 2.3.1.0.1 - SQL Injection
2014-09-23 14:06:12