Description
SQL injection vulnerability in index.php in Zenphoto 1.2.5 allows remote attackers to execute arbitrary SQL commands via the title parameter in a news action. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Remediation
References
Related Vulnerabilities
WordPress Plugin AddToAny Share Buttons Cross-Site Scripting (1.7.45)
WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2007-0541)
MySQL CVE-2020-2779 Vulnerability (CVE-2020-2779)
WebLogic Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-10334)
WordPress Plugin PAYPAL CURRENCY CONVERTER BASIC FOR WOOCOMMERCE Arbitrary File Disclosure (1.3)