Description

SQL injection vulnerability in fim_rss.php in the fGallery 2.4.1 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the album parameter.

Remediation

References

CVE-2008-0491

Related Vulnerabilities

WordPress Plugin BetterDocs-Best Documentation & Knowledge Base Cross-Site Scripting (1.9.1)

WordPress Plugin HTML5 Lyrics Karaoke Player Cross-Site Scripting (1.06)

WordPress Plugin Form Lightbox Security Bypass (2.1)

WordPress Plugin ECPay Logistics for WooCommerce Cross-Site Scripting (1.2.181030)

MediaWiki Other Vulnerability (CVE-2004-2152)

Severity

High

Classification

CVE-2008-0491 CWE-138

Tags

Missing Update Known Vulnerabilities