Description
SQL injection vulnerability in fim_rss.php in the fGallery 2.4.1 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the album parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin CM Ad Changer Cross-Site Scripting (1.7.7)
WordPress Plugin Keyword Meta Cross-Site Request Forgery (3.0)
WordPress Plugin Contact Form for WordPress-Ultimate Form Builder Lite Cross-Site Scripting (1.3.3)
WordPress Plugin Appointments Cross-Site Scripting (2.2.2.2)
Drupal Core 4.7.x Multiple Cross-Site Scripting Vulnerabilities (4.7.0 - 4.7.6)