EUVD-2013-3413

Malware in sbrugna...

WordPress Video Gallery by Huzzaz plugin <= 10.5 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Muhammad Yudha - DJ in WordPress Plugin Video Gallery by Huzzaz versions = 10.5...

WordPress plugin Video Gallery 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A cross-site scripting vulnerability...

WordPress Video Gallery plugin <= 2.4.1 - Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability

Authenticated Administrator+ Stored Cross-Site Scripting vulnerability discovered by tmrswrr in WordPress Plugin Video Gallery – YouTube Gallery versions = 2.4.1...

CVE-2023-40558 WordPress Video Gallery & Management Plugin <= 3.3.5 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in eMarket Design YouTube Video Gallery by YouTube Showcase plugin = 3.3.5 versions...

WordPress Video gallery and Player Plugin <= 2.6.5 is vulnerable to Broken Access Control

Software Video gallery and Player Type Plugin Vulnerable versions = 2.6.5 Fixed in 2.6.6 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2023-40200 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 27dbac5e56cd Credits Abdi Pranata Require...

WordPress Video Gallery Plugin <= 1.0.10 is vulnerable to Cross Site Scripting (XSS)

Software Video Gallery Type Plugin Vulnerable versions = 1.0.10 Fixed in 1.0.11 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-32597 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 30006890509f Credits yuyudhn Required...

WordPress Huge-IT Video Gallery 2.0.4 SQL Injection

DefenseCode ThunderScan SAST Advisory WordPress Huge-IT Video Gallery Plugin Security Vulnerability Advisory ID: DC-2017-01-009 Advisory Title: WordPress Huge-IT Video Gallery plugin SQL injection vulnerability Advisory URL: http://www.defensecode.com/advisories.php Software: WordPress Huge-IT...

WordPress Plugin Video Gallery 2.7 - SQL Injection

WordPress Plugin Video Gallery 2.7 - SQL Injection Exploit Title: WordPress Video Gallery 2.7 SQL Injection Date: 20-01-2015 Software Link: https://wordpress.org/plugins/contus-video-gallery/ Exploit Author: Kacper Szurek Contact: http://twitter.com/KacperSzurek Website: http://security.szurek.pl...

WordPress Video Gallery Plugin 2.8 Arbitrary Mail Relay Vulnerability

Exploit for php platform in category web applications Exploit Title : Wordpress Video Gallery 2.8 Unprotected Mail Page Exploit Author : Claudio Viviani Website Author: http://www.homelab.it http://archive-exploit.homelab.it/1 Full HomelabIT Vulns Archive Vendor Homepage :...

WordPress Video Gallery 2.8 Unprotected Mail Page

Exploit Title : Wordpress Video Gallery 2.8 Unprotected Mail Page Exploit Author : Claudio Viviani Website Author: http://www.homelab.it http://archive-exploit.homelab.it/1 Full HomelabIT Vulns Archive Vendor Homepage : http://www.apptha.com/category/extension/Wordpress/Video-Gallery Software...

Wordpress Video Gallery SQL Injection Vulnerability

WordPress is a use of PHP language development blog platform, users can support PHP and MySQL database server set up their own weblog. A SQL injection vulnerability exists in Wordpress Video Gallery. An attacker can exploit this vulnerability to compromise the application, access or modify data...

Sql injection

SQL injection vulnerability in videogalleryrss.php in the Apptha WordPress Video Gallery contus-video-gallery plugin before 2.8 for WordPress allows remote attackers to execute arbitrary SQL commands via the vid parameter in a rss action to wp-admin/admin-ajax.php...

CVE-2015-2065

CVE-2015-2065 is a SQL injection vulnerability in the Apptha WordPress Video Gallery (contus-video-gallery) plugin for WordPress, affecting versions before 2.8. The flaw allows remote attackers to execute arbitrary SQL commands via the vid parameter in a rss action to wp-admin/admin-ajax.php. The...

WordPress Plugin Video Gallery 2.7.0 - SQL Injection

Exploit Title : Wordpress Video Gallery 2.7 SQL Injection Vulnerability Exploit Author : Claudio Viviani Vendor Homepage : http://www.apptha.com/category/extension/Wordpress/Video-Gallery Software Link : https://downloads.wordpress.org/plugin/contus-video-gallery.2.7.zip Dork Google:...

Sql injection

Multiple SQL injection vulnerabilities in the Apptha WordPress Video Gallery contus-video-gallery plugin 2.5, possibly as distributed before 2014-07-23, for WordPress allow 1 remote attackers to execute arbitrary SQL commands via the vid parameter in a myextract action to wp-admin/admin-ajax.php ...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Apptha WordPress Video Gallery contus-video-gallery plugin 2.5, possibly before 2014-07-23, for WordPress allow remote authenticated users to inject arbitrary web script or HTML via the videoadssearchQuery parameter to 1...

CVE-2014-9098

Multiple cross-site scripting XSS vulnerabilities in the Apptha WordPress Video Gallery contus-video-gallery plugin 2.5, possibly before 2014-07-23, for WordPress allow remote authenticated users to inject arbitrary web script or HTML via the videoadssearchQuery parameter to 1...

WordPress Video Gallery Plugin 2.5 - Multiple Vulnerabilities

Video Gallery plugin is prone to multiple vulnerabilities, such as SQL injection and XSS vulnerabilities. Solution Upgrade the plugin...

WordPress Video Gallery 2.5 Cross Site Scripting / SQL Injection

Wordpress Video Gallery Exploit Title : Wordpress Video Gallery 2.5 SQL Injection and XSS Vulnerabilities Exploit Author : Claudio Viviani Vendor Homepage : http://www.apptha.com/category/extension/Wordpress/Video-Gallery Software Link :...