SQL Injection Vulnerability in NextGEN Gallery for WordPress

Security Risk: Critical Exploitation Level: Easy/Remote DREAD Score: 9 Vulnerability: SQL Injection Patched Version: 2.1.79 As part of a vulnerability research project for our Sucuri Firewall (WAF), we have been auditing multiple open source projects looking for security issues. While working on the WordPress plugin NextGEN Gallery, we discovered a severe SQL Injection vulnerability.

visit Sucuri Blog

Blog at WordPress.com.

Up ↑

%d bloggers like this: