2 matches found
CVE-2016-10889
The nextgen-gallery plugin before 2.1.57 for WordPress has SQL injection via a gallery name...
CVE-2016-10889
The CVE-2016-10889 vulnerability affects the WordPress NextGEN Gallery plugin prior to version 2.1.57. The issue is an SQL injection via a gallery name, as documented by Red Hat and NVD references. Impact is described as high in CVSS v3 (CRITICAL, with HIGH confidentiality, integrity, and availab...