High severity8.1NVD Advisory· Published Oct 4, 2021· Updated Jun 17, 2026
CVE-2021-24465
CVE-2021-24465
Description
The Meow Gallery WordPress plugin before 4.1.9 does not sanitise, validate or escape the ids attribute of its gallery shortcode (available for users as low as Contributor) before using it in an SQL statement, leading to an authenticated SQL Injection issue. The injection also allows the returned values to be manipulated in a way that could lead to data disclosure and arbitrary objects to be deserialized.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Meow Gallerydescription
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/08dbe202-0136-4502-87e7-5e984dc27b16nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.