2 matches found
CVE-2015-9445
The unite-gallery-lite plugin before 1.5 for WordPress has CSRF and SQL injection via wp-admin/admin-ajax.php in a unitegalleryajaxaction operation...
CVE-2015-9445
CVE-2015-9445 affects the WordPress plugin ** Unite Gallery Lite** (before version 1.5). The issue is a combination of CSRF and SQL injection via wp-admin/admin-ajax.php in the operation unitegallery_ajax_action . This vulnerability is reported with a high impact (NVD CVSS v3.1 base score 8.8) an...