Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:45 a.m.8 views

CVE-2022-0826

The WP Video Gallery WordPress plugin through 1.7.1 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action, leading to an SQL Injection exploitable by unauthenticated users...

9.8CVSS9.8AI score0.09238EPSS
Exploits1References1
Circl
Circl
added 2022/05/09 8:36 p.m.24 views

CVE-2022-0826

creationtimestamp| type| source ---|---|--- 2022-05-09 20:36:43+00:00| seen| https://t.me/cibsecurity/42193 2025-01-26 00:00:00+00:00| seen| The Shadowserver honeypot/common-vulnerabilities - 2025-01-26 2025-05-11 00:00:00+00:00| exploited| The Shadowserver honeypot/exploited-vulnerabilities -...

9.8CVSS7.3AI score0.09238EPSS
In wildExploits1References4
Cvelist
Cvelist
added 2022/05/09 4:50 p.m.32 views

CVE-2022-0826 WP Video Gallery <= 1.7.1 - Unauthenticated SQLi

The WP Video Gallery WordPress plugin through 1.7.1 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action, leading to an SQL Injection exploitable by unauthenticated users...

10AI score0.09238EPSS
Exploits1References1
CVE
CVE
added 2022/05/09 4:50 p.m.115 views

CVE-2022-0826

Summary: CVE-2022-0826 affects WordPress plugin WP Video Gallery (versions &lt;= 1.7.1). The connected Nuclei template confirms a SQL injection vulnerability where the plugin fails to sanitize/escape a parameter before interpolating it into a SQL statement via an AJAX action. This allows unauthen...

9.8CVSS9.9AI score0.09238EPSS
In wildExploits1References1Affected Software1
Rows per page
Query Builder