Description

SQL injection vulnerability in fim_rss.php in the fGallery 2.4.1 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the album parameter.

Remediation

References

CVE-2008-0491

Related Vulnerabilities

WordPress Plugin STT2 Extension Add Terms Unspecified Vulnerability (1.0.2)

WordPress Plugin Simplified Content Cross-Site Scripting (1.0.0)

LimeSurvey Improper Restriction of Rendered UI Layers or Frames Vulnerability (CVE-2019-16175)

Joomla Other Vulnerability (CVE-2006-6833)

Drupal Improper Access Control Vulnerability (CVE-2020-13677)

Severity

High

Classification

CVE-2008-0491 CWE-138

Tags

Missing Update Known Vulnerabilities