Lucene search
K

4 matches found

Circl
Circl
added 2025/07/09 10:28 p.m.16 views

CVE-2022-0169

creationtimestamp| type| source ---|---|--- 2025-07-09 22:28:10+00:00| published-proof-of-concept| Telegram/dtptb166B4lscGqCF62eMyOZNDG3baUUdYM2x2kmFDN2pDo 2025-07-18 23:45:22+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/wpphotogallerysqli.rb...

9.8CVSS8.7AI score0.74615EPSS
Exploits4References4
Check Point Advisories
Check Point Advisories
added 2022/10/20 12:0 a.m.16 views

WordPress Photo Gallery Plugin SQL Injection (CVE-2022-0169)

A SQL injection vulnerability exists in the WordPress Photo Gallery plugin. This vulnerability is due to an input validation error on the bwgtagidbwgthumbnails0 parameter...

7.5CVSS2.6AI score0.74615EPSS
Exploits4
Cvelist
Cvelist
added 2022/03/14 2:41 p.m.33 views

CVE-2022-0169 Photo Gallery by 10Web < 1.6.0 - Unauthenticated SQL Injection

The Photo Gallery by 10Web WordPress plugin before 1.6.0 does not validate and escape the bwgtagidbwgthumbnails0 parameter before using it in a SQL statement via the bwgfrontenddata AJAX action available to unauthenticated and authenticated users, leading to an unauthenticated SQL injection...

10AI score0.74615EPSS
Exploits4References2
CVE
CVE
added 2022/03/14 2:41 p.m.241 views

CVE-2022-0169

The CVE concerns the WordPress plugin Photo Gallery by 10Web (versions before 1.6.0). The vulnerability is an SQL injection in admin-ajax.php via bwg_tag_id_bwg_thumbnails_0 in the bwg_frontend_data action, exploitable by unauthenticated users. Root cause: lack of validation/escaping of the bwg_t...

9.8CVSS9.8AI score0.74615EPSS
In wildExploits4References2Affected Software1
Rows per page
Query Builder