2 matches found
WordPress Photo Gallery Blind SQL injection Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:wordpress:wordpress"; ifdescription...
CVE-2015-1055
The CVE-2015-1055 vulnerability affects the WordPress Photo Gallery plugin (version 1.2.7 and earlier) used with WordPress. It allows remote attackers to perform a blind SQL injection via the order_by parameter in a GalleryBox action to wp-admin/admin-ajax.php, potentially exposing or altering da...