Critical severity9.8NVD Advisory· Published Jul 30, 2019· Updated Jun 17, 2026
CVE-2019-14313
CVE-2019-14313
Description
A SQL injection vulnerability exists in the 10Web Photo Gallery plugin before 1.5.31 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system via filemanager/model.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- 10Web/Photo Gallery plugindescription
- Range: <1.5.31
Patches
Vulnerability mechanics
References
4- plugins.trac.wordpress.org/changeset/2128378nvdPatch
- fortiguard.com/zeroday/FG-VD-19-101nvdThird Party Advisory
- wpvulndb.com/vulnerabilities/9480nvdThird Party Advisory
- wordpress.org/plugins/photo-gallery/nvdRelease Notes
News mentions
0No linked articles in our index yet.