Lucene search
K

4 matches found

Packet Storm
Packet Storm
added 2024/09/01 12:0 a.m.227 views

WordPress Contus Video Gallery Unauthenticated SQL Injection Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Contus Video Gallery Unauthenticated SQL Injection Scanner', 'Description' = %q This module attempts to exploit a UNION-based SQL...

7.5CVSS7.4AI score0.4107EPSS
Exploits4
Circl
Circl
added 2018/05/29 3:50 p.m.12 views

CVE-2015-2065

creationtimestamp| type| source ---|---|--- 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/wpcontusvideogallerysqli.rb 2025-02-06 03:13:42+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:09:37+00:00|...

7.5CVSS5.5AI score0.4107EPSS
Exploits4References1
Cvelist
Cvelist
added 2015/02/24 5:0 p.m.36 views

CVE-2015-2065

SQL injection vulnerability in videogalleryrss.php in the Apptha WordPress Video Gallery contus-video-gallery plugin before 2.8 for WordPress allows remote attackers to execute arbitrary SQL commands via the vid parameter in a rss action to wp-admin/admin-ajax.php...

8.3AI score0.4107EPSS
Exploits4References5
CVE
CVE
added 2015/02/24 5:0 p.m.80 views

CVE-2015-2065

CVE-2015-2065 is a SQL injection vulnerability in the Apptha WordPress Video Gallery (contus-video-gallery) plugin for WordPress, affecting versions before 2.8. The flaw allows remote attackers to execute arbitrary SQL commands via the vid parameter in a rss action to wp-admin/admin-ajax.php. The...

7.5CVSS8.6AI score0.4107EPSS
Exploits4References5Affected Software1
Rows per page
Query Builder