Description

SQL injection vulnerability in fim_rss.php in the fGallery 2.4.1 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the album parameter.

Remediation

References

CVE-2008-0491

Related Vulnerabilities

Apache Tomcat Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2020-13935)

WordPress Plugin Nextend Twitter Connect Cross-Site Scripting (1.5.0)

MySQL CVE-2020-2897 Vulnerability (CVE-2020-2897)

WordPress Plugin Catch Breadcrumb Cross-Site Scripting (1.5.4)

WordPress Plugin Salon Booking System Cross-Site Scripting (6.3)

Severity

High

Classification

CVE-2008-0491 CWE-138

Tags

Missing Update Known Vulnerabilities