WordPress Contus Video Gallery Unauthenticated SQL Injection Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Contus Video Gallery Unauthenticated SQL Injection Scanner', 'Description' = %q This module attempts to exploit a UNION-based SQL...

WordPress Contus Video Gallery Plugin SQL Injection Vulnerability

WordPress is a content management system developed using PHP language. Contus Video Gallery is a video gallery plugin for WordPress sites. A SQL injection vulnerability exists in Contus Video Gallery 2.7 and earlier versions due to the program failing to properly filter the content of the "vid" G...

WordPress Contus Video Gallery Unauthenticated SQL Injection Scanner

This module attempts to exploit a UNION-based SQL injection in Contus Video Gallery for Wordpress version 2.7 and likely prior in order if the instance is vulnerable. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework...

CVE-2015-2065

CVE-2015-2065 is a SQL injection vulnerability in the Apptha WordPress Video Gallery (contus-video-gallery) plugin for WordPress, affecting versions before 2.8. The flaw allows remote attackers to execute arbitrary SQL commands via the vid parameter in a rss action to wp-admin/admin-ajax.php. The...

Contus Video Gallery 2.0 & 1.6 - SQL Injection

The contus-video-gallery WordPress plugin was affected by a SQL Injection security vulnerability...

WordPress Contus Video Gallery Plugin 1.3 - Arbitrary File Upload

Contus Video Gallery plugin's "upload1.php" is prone to an arbitrary file upload vulnerability. Restricted access to this script is not properly realized. In that way an attacker can to upload files containing malicious PHP code and run it in the context of the web server process. Other attacks a...

Contus Video Gallery 1.3 - Arbitrary File Upload

The contus-video-galleryversion-10 WordPress plugin was affected by an Arbitrary File Upload security vulnerability...

WordPress Plugin Contus Video Gallery - upload1.php Arbitrary File Upload

WordPress Plugin Contus Video Gallery - upload1.php Arbitrary File Upload source: https://www.securityfocus.com/bid/53931/info WordPress Contus Video Gallery is prone to a vulnerability that lets attackers upload arbitrary files. The issue occurs because the application fails to adequately saniti...

WordPress Plugin Contus Video Gallery - 'upload1.php' Arbitrary File Upload

source: https://www.securityfocus.com/bid/53931/info WordPress Contus Video Gallery is prone to a vulnerability that lets attackers upload arbitrary files. The issue occurs because the application fails to adequately sanitize user-supplied input. An attacker may leverage this issue to upload...