Description
SQL injection vulnerability in fim_rss.php in the fGallery 2.4.1 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the album parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin Clockwork SMS Notfications Cross-Site Scripting (2.0.3)
Jboss EAP Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0093)
WordPress Plugin Import any XML or CSV File to WordPress Pro Multiple Vulnerabilities (4.1.1)
Chamilo Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2023-39061)