WordPress fGallery Plus Plugin - Reflected Cross Site Scripting

This plugin is prone to a cross site scripting vulnerability via fimrss.php album parameter. Solution Update the plugin...

WordPress fGallery Plus Plugin - Reflected Cross Site Scripting

This plugin is prone to a cross site scripting vulnerability via fimrss.php album parameter. Solution Update the plugin...

Sql injection

SQL injection vulnerability in fimrss.php in the fGallery 2.4.1 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the album parameter...

CVE-2008-0491

CVE-2008-0491 affects the WordPress fGallery plugin, version 2.4.1, via the fim_rss.php script. The vulnerability is an SQL injection in the parameter named album that is used in a database query without proper sanitization, enabling remote attackers to execute arbitrary SQL commands. Reported im...

WordPress fGallery Plugin <= 2.4.1 - SQL Injection

Because of this vulnerability in fimrss.php, the attackers can execute arbitrary SQL commands via the "album" parameter. Solution Update the plugin...