EUVD-2008-0501

Malware in sbrugna...

WordPress fGallery Plus Plugin - Reflected Cross Site Scripting

This plugin is prone to a cross site scripting vulnerability via fimrss.php album parameter. Solution Update the plugin...

WordPress fGallery Plus Plugin - Reflected Cross Site Scripting

This plugin is prone to a cross site scripting vulnerability via fimrss.php album parameter. Solution Update the plugin...

fGallery 2.4.1 - fimrss.php SQL Injection

The fgallery WordPress plugin was affected by a fimrss.php SQL Injection security vulnerability...

CVE-2008-0491

SQL injection vulnerability in fimrss.php in the fGallery 2.4.1 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the album parameter...

Sql injection

SQL injection vulnerability in fimrss.php in the fGallery 2.4.1 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the album parameter...

CVE-2008-0491

SQL injection vulnerability in fimrss.php in the fGallery 2.4.1 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the album parameter...

CVE-2008-0491

CVE-2008-0491 affects the WordPress fGallery plugin, version 2.4.1, via the fim_rss.php script. The vulnerability is an SQL injection in the parameter named album that is used in a database query without proper sanitization, enabling remote attackers to execute arbitrary SQL commands. Reported im...

WordPress fGallery Plugin <= 2.4.1 - SQL Injection

Because of this vulnerability in fimrss.php, the attackers can execute arbitrary SQL commands via the "album" parameter. Solution Update the plugin...

PT-2008-2120 · WordPress · Gallery

Name of the Vulnerable Software and Affected Versions: fGallery plugin for WordPress version 2.4.1 Description: The issue allows remote attackers to execute arbitrary SQL commands. This is achieved via the album parameter in the fim rss.php file. Recommendations: For version 2.4.1, consider...

wpfgallery-sql.txt

-------------------------------------------------------------- H-T Team HouSSaMix + ToXiC350 from MoroCCo -------------------------------------------------------------- Author : Houssamix From H-T Team Script : Wordpress Plugin fGallery 2.4.1 Download : http://www.fahlstad.se/wp-plugins/fgallery/...

Wordpress plugin fGallery 2.4.1 fimrss.php SQL Injection Vulnerability

No description provided by source. -------------------------------------------------------------- H-T Team HouSSaMix + ToXiC350 from MoroCCo -------------------------------------------------------------- Author : Houssamix From H-T Team Script : Wordpress Plugin fGallery 2.4.1 Download :...

WordPress fGallery 'fim_rss.php' 'album' Parameter SQL Injection

The remote host is running fGallery, a third-party image gallery plugin for WordPress. The version of fGallery installed on the remote host fails to sanitize input to the 'album' parameter of the 'fimrss.php' script before using it in a database query. Regardless of PHP's 'magicquotesgpc' setting...

WordPress Plugin fGallery 2.4.1 - fimrss.php SQL Injection

WordPress Plugin fGallery 2.4.1 - fimrss.php SQL Injection -------------------------------------------------------------- H-T Team HouSSaMix + ToXiC350 from MoroCCo -------------------------------------------------------------- Author : Houssamix From H-T Team Script : Wordpress Plugin fGallery...

WordPress Plugin fGallery 2.4.1 - &#039;fimrss.php&#039; SQL Injection

-------------------------------------------------------------- H-T Team HouSSaMix + ToXiC350 from MoroCCo -------------------------------------------------------------- Author : Houssamix From H-T Team Script : Wordpress Plugin fGallery 2.4.1 Download : http://www.fahlstad.se/wp-plugins/fgallery/...

Wordpress plugin fGallery 2.4.1 fimrss.php SQL Injection Vulnerability

Exploit for unknown platform in category web applications ====================================================================== Wordpress plugin fGallery 2.4.1 fimrss.php SQL Injection Vulnerability ======================================================================...