Back to search
CVE-2019-14313
Published: Jul 30, 2019
Modified: Aug 5, 2024
PUBLISHED
Description
A SQL injection vulnerability exists in the 10Web Photo Gallery plugin before 1.5.31 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system via filemanager/model.php.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://wordpress.org/plugins/photo-gallery/#developers
x_refsource_CONFIRM
https://plugins.trac.wordpress.org/changeset/2128378
x_refsource_CONFIRM
https://fortiguard.com/zeroday/FG-VD-19-101
x_refsource_MISC
https://wpvulndb.com/vulnerabilities/9480
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now