SQL injection vulnerability in GBgallery.php in the GB Gallery Slideshow plugin 1.5 for WordPress allows remote administrators to execute arbitrary SQL commands via the selected_group parameter in a gb_ajax_get_group action to wp-admin/admin-ajax.php.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2014-10-21T14:00:00
Updated: 2024-08-06T13:18:48.452Z
Reserved: 2014-10-21T00:00:00
Link: CVE-2014-8375
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2014-10-21T14:55:04.243
Modified: 2015-08-06T16:41:02.020
Link: CVE-2014-8375
Redhat
No data.