15 matches found
EUVD-2019-5653
Malware in sbrugna...
CVE-2019-14467
The Social Photo Gallery plugin 1.0 for WordPress allows Remote Code Execution by creating an album and attaching a malicious PHP file in the cover photo album, because the file extension is not checked...
WordPress plugin Gallery for Social Photo 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting...
CVE-2022-2224
The WordPress plugin Gallery for Social Photo is vulnerable to Cross-Site Request Forgery in versions up to, and including 1.0.0.27 due to failure to properly check for the existence of a nonce in the function gifeedduplicatefeed. This make it possible for unauthenticated attackers to duplicate...
CVE-2022-2224
The WordPress plugin Gallery for Social Photo is vulnerable to Cross-Site Request Forgery in versions up to, and including 1.0.0.27 due to failure to properly check for the existence of a nonce in the function gifeedduplicatefeed. This make it possible for unauthenticated attackers to duplicate...
WordPress Social Photo Gallery Plugin Remote Code Execution (CVE-2019-14467)
A remote code execution vulnerability exists in WordPress Social Photo Gallery Plugin. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CVE-2019-14467
The Social Photo Gallery plugin 1.0 for WordPress allows Remote Code Execution by creating an album and attaching a malicious PHP file in the cover photo album, because the file extension is not checked...
CVE-2019-14467
The Social Photo Gallery plugin 1.0 for WordPress allows Remote Code Execution by creating an album and attaching a malicious PHP file in the cover photo album, because the file extension is not checked...
Remote code execution
The Social Photo Gallery plugin 1.0 for WordPress allows Remote Code Execution by creating an album and attaching a malicious PHP file in the cover photo album, because the file extension is not checked...
CVE-2019-14467
CVE-2019-14467 affects WordPress Social Photo Gallery plugin (v1.0) and enables remote code execution via uploading a malicious PHP file in an album cover, because the file extension is not checked. The exploit is local in terms of access vector and relies on uploading an executable file through ...
CVE-2019-14467
The Social Photo Gallery plugin 1.0 for WordPress allows Remote Code Execution by creating an album and attaching a malicious PHP file in the cover photo album, because the file extension is not checked...
WordPress Social Photo Gallery Remote Code Execution Vulnerability
WordPress is a suite of blogging platforms from the WordPress Foundation developed using the PHP language.Social Photo Gallery is the ultimate lightbox plugin for WordPress. A remote code execution vulnerability exists in WordPress Social Photo Gallery, which can be exploited by an attacker to...
WordPress Social Photo Gallery 1.0 Remote Code Execution Vulnerability
Exploit for php platform in category web applications ============================================= - Discovered by: Prestigia Seguridad - Severity: 7,5/10 CVSS Base Score - CVE-ID: CVE-2019-14467 ============================================= I. VULNERABILITY ------------------------- WordPress...
WordPress Social Photo Gallery plugin <= 1.0 - Remote Code Execution (RCE) vulnerability
Remote Code Execution RCE vulnerability found by Prestigia Seguridad in WordPress Social Photo Gallery plugin versions = 1.0. Solution 19.11.2019 - we were unable to find a patched version of this plugin...
Social Photo Gallery <= 1.0 - Remote Code Execution (RCE)
The Social Photo Gallery WordPress plugin was affected by a Remote Code Execution RCE security vulnerability...