CVE-2015-1393
The CVE-2015-1393 entry concerns the Photo Gallery WordPress plugin (before 1.2.11). The vulnerability is a SQL injection in the asc_or_desc parameter of a create gallery request processed via galleries_bwg on wp-admin/admin.php, exploitable by remote authenticated users. The affected component i...