Unrated severityNVD Advisory· Published Dec 13, 2021· Updated Aug 3, 2024
All-In-One-Gallery < 2.5.0 - Admin+ Local File Inclusion
CVE-2021-24970
Description
The All-in-One Video Gallery WordPress plugin before 2.5.0 does not sanitise and validate the tab parameter before using it in a require statement in the admin dashboard, leading to a Local File Inclusion issue
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/All-in-One Video Gallerydescription
- Range: <2.5.0
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/9b15d47e-43b6-49a8-b2c3-b99c92101e10mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.