Description
SQL injection vulnerability in fim_rss.php in the fGallery 2.4.1 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the album parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin BetterDocs-Best Documentation & Knowledge Base Cross-Site Scripting (1.9.1)
WordPress Plugin HTML5 Lyrics Karaoke Player Cross-Site Scripting (1.06)
WordPress Plugin Form Lightbox Security Bypass (2.1)
WordPress Plugin ECPay Logistics for WooCommerce Cross-Site Scripting (1.2.181030)