9.8CVSS
9.5AI Score
0.033EPSS
The nextgen-gallery plugin before 2.1.57 for WordPress has SQL injection via a gallery name.
9.8CVSS
9.8AI Score
0.001EPSS
A SQL injection vulnerability exists in the Imagely NextGEN Gallery plugin before 3.2.11 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system via modules/nextgen_gallery_display/package.module.nextgen_gal...
9.8CVSS
9.9AI Score
0.003EPSS