Unrated severityNVD Advisory· Published May 9, 2022· Updated Aug 2, 2024
WP Video Gallery <= 1.7.1 - Unauthenticated SQLi
CVE-2022-0826
Description
The WP Video Gallery WordPress plugin through 1.7.1 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action, leading to an SQL Injection exploitable by unauthenticated users
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/WP Video Gallery WordPress plugindescription
- Range: <=1.7.1
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/7a3eed3b-c643-4e24-b833-eba60ab631c5mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.