Lucene search
PRIOn knowledge basePRION:CVE-2015-7527HistoryDec 17, 2015 - 7:59 p.m.
Input validation
2015-12-1719:59:00
PRIOn knowledge base
www.prio-n.com
2
lib/core.php in the Cool Video Gallery plugin 1.9 for WordPress allows remote attackers to execute arbitrary code via shell metacharacters in the “Width of preview image” and possibly other input fields in the “Video Gallery Settings” page.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cool_video_gallery | eq | 1.9 |
References
packetstormsecurity.com/files/134626/WordPress-Cool-Video-Gallery-1.9-Command-Injection.html
www.openwall.com/lists/oss-security/2015/12/02/9
www.securityfocus.com/archive/1/537051/100/0/threaded
www.vapidlabs.com/advisory.php?v=158
wordpress.org/support/topic/command-injection-vulnerability-in-v19
wpvulndb.com/vulnerabilities/8348
Related
cvelist
cvelist
CVE-2015-7527
2015-12-17 19:00:00
packetstorm
packetstorm
WordPress Cool Video Gallery 1.9 Command Injection
2015-12-03 00:00:00
cve
cve
CVE-2015-7527
2015-12-17 19:59:04
wpvulndb
wpvulndb
Cool Video Gallery <= 1.9 - Authenticated Comm& Injection
2015-12-02 00:00:00
patchstack
patchstack
WordPress Cool Video Gallery Plugin <= 1.9 - Command Injection
2015-09-29 00:00:00
nvd
nvd
CVE-2015-7527
2015-12-17 19:59:04
zdt
zdt
WordPress Cool Video Gallery 1.9 Command Injection Vulnerability
2015-12-04 00:00:00