Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

11 matches found

Nuclei
Nucleiadded 2 days ago11 views

WordPress zm-gallery plugin 1.0 SQL Injection

zm-gallery plugin 1.0 for WordPress is susceptible to SQL injection via the order parameter. id: CVE-2016-10940 info: name: WordPress zm-gallery plugin 1.0 SQL Injection author: cckuailong,daffainfo severity: high description: zm-gallery plugin 1.0 for WordPress is susceptible to SQL injection vi...

7.2CVSS7.1AI score0.2183EPSS
Exploits2References5
RedhatCVE
RedhatCVEadded 2025/05/22 3:46 a.m.5 views

CVE-2016-10940

The zm-gallery plugin 1.0 for WordPress has SQL injection via the order parameter...

7.2CVSS8.1AI score0.2183EPSS
Exploits2References1
CNVD
CNVDadded 2019/09/17 12:0 a.m.1 views

WordPress zm-gallery plugin SQL injection vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A SQL injection vulnerability exists in version 1.0 of the WordPress zm-gallery plugin. The vulnerability stem...

7.2CVSS8.1AI score0.2183EPSS
Exploits2References1
OSV
OSVadded 2019/09/13 12:15 p.m.1 views

CVE-2016-10940

The zm-gallery plugin 1.0 for WordPress has SQL injection via the order parameter...

7.2CVSS5.8AI score0.2183EPSS
Exploits2References2
NVD
NVDadded 2019/09/13 12:15 p.m.7 views

CVE-2016-10940

The zm-gallery plugin 1.0 for WordPress has SQL injection via the order parameter...

7.2CVSS7.5AI score0.2183EPSS
Exploits2References2
Prion
Prionadded 2019/09/13 12:15 p.m.7 views

Sql injection

The zm-gallery plugin 1.0 for WordPress has SQL injection via the order parameter...

6.5CVSS8.4AI score0.2183EPSS
Exploits2References2Affected Software1
Cvelist
Cvelistadded 2019/09/13 11:49 a.m.15 views

CVE-2016-10940

The zm-gallery plugin 1.0 for WordPress has SQL injection via the order parameter...

7.5AI score0.2183EPSS
Exploits2References2
CVE
CVEadded 2019/09/13 11:49 a.m.70 views

CVE-2016-10940

CVE-2016-10940 refers to the WordPress plug‑in zm-gallery 1.0, which is vulnerable to SQL injection through the order parameter. The Nuclei template and related sources describe the condition as a SQL injection that could allow an attacker to execute arbitrary SQL commands, potentially exposing o...

7.2CVSS7.5AI score0.2183EPSS
Exploits2References2Affected Software1
Patchstack
Patchstackadded 2016/12/20 12:0 a.m.14 views

WordPress ZM Gallery Plugin <= 1.0 - Blind SQL Injection

This plugin is prone to an SQL injection vulnerability. It allows an attacker to modify data, compromise the access and application or exploit hidden vulnerabilities in the underlying database. Solution Update the plugin...

3.8AI score
Exploits0References1Affected Software1
Patchstack
Patchstackadded 2016/12/20 12:0 a.m.10 views

WordPress ZM Gallery Plugin <= 1.0 - Blind SQL Injection

This plugin is prone to an SQL injection vulnerability. It allows an attacker to modify data, compromise the access and application or exploit hidden vulnerabilities in the underlying database. Solution Update the plugin...

3.8AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDBadded 2016/12/14 12:0 a.m.13 views

ZM Gallery 1.0 – Authenticated Blind SQL Injection

The plugin is still affected and has been closed. Type user access: admin user. $GET‘order’ is escaped wrong. Attack with Blind Injection PoC python sqlmap.py -u "http://www.example.com/wp-admin/admin.php?page=zmgallery=name=desc" --dbs --cookie="cookie of admin user" --level=5 --dbms=mysql...

6.5CVSS0.2AI score0.2183EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder