Unrated severityNVD Advisory· Published Aug 18, 2015· Updated Jun 17, 2026
CVE-2015-5599
CVE-2015-5599
Description
Multiple SQL injection vulnerabilities in upload.php in the Powerplay Gallery plugin 3.3 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) albumid or (2) name parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:powerplay_gallery_project:powerplay_gallery:3.3:*:*:*:*:wordpress:*:*
- Range: =3.3
Patches
Vulnerability mechanics
References
4- packetstormsecurity.com/files/132671/WordPress-WP-PowerPlayGallery-3.3-File-Upload-SQL-Injection.htmlnvdExploitThird Party AdvisoryVDB Entry
- seclists.org/fulldisclosure/2015/Jul/64nvdExploitMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2015/07/20/1nvdExploitMailing ListThird Party AdvisoryVDB Entry
- www.vapid.dhs.org/advisory.phpnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.