WordPress Plugin Vulnerabilities

GRAND Flash Album Gallery 2.55 - "gid" SQL Injection

Description

The Album and Image Gallery with Lightbox – Flagallery Photo Portfolio WordPress plugin was affected by a "gid" SQL Injection security vulnerability.

Affects Plugins

Plugin icon
flash-album-gallery
Fixed in 2.56

Classification

Type
SQLI
OWASP top 10
A1: Injection
CWE
CWE-89

Miscellaneous

Verified
No
WPVDB ID
2ef122af-9112-4cd8-b3ce-397fa68251c9

Timeline

Publicly Published
2014-08-01 (about 9 years ago)
Added
2014-08-01 (about 9 years ago)
Last Updated
2015-05-15 (about 9 years ago)

Other

Published
Title
Published
2023-09-18
Title
wpDiscuz < 7.6.6 - Unauthenticated SQL Injection
Published
2014-08-01
Title
Mz-jajak <= 2.1 - index.php id Parameter SQL Injection
Published
2014-08-01
Title
Paid Downloads < 2.21 - SQL Injection
Published
2022-10-17
Title
Complianz (Free < 6.3.4, Premium < 6.3.6) - Translator SQLi
Published
2022-12-09
Title
Visual Email Designer for WooCommerce < 1.7.2 - Multiple Author+ SQLi