NuytsTech Security

CVE-2014-5201

by ·

SQL injection vulnerability in the Gallery Objects plugin 0.4 for WordPress allows remote attackers to execute arbitrary SQL commands via the viewid parameter in a go_view_object action to wp-admin/admin-ajax.php.

Date published : 2014-08-12

http://www.securityfocus.com/bid/68791

http://packetstormsecurity.com/files/127533/WordPress-Gallery-Objects-0.4-SQL-Injection.html

Tags: