Unite Gallery Lite <= 1.4.6 - CSRF & Authenticated SQL Injection

Affects Plugin

fixed in version 1.5

References

CVE 2015-9447
CVE 2015-9446
CVE 2015-9445
ExploitDB 37705
PacketStorm 132842
URL https://seclists.org/fulldisclosure/2015/Jul/114
URL https://plugins.trac.wordpress.org/changeset/1178586/unite-gallery-lite

Classification

Type MULTI

Miscellaneous

Submitter ethicalhack3r
Submitter Website https://dewhurstsecurity.com/
Submitter Twitter ethicalhack3r
Views 8066
Verified No
WPVDB ID 8113

Timeline

Publicly Published 2015-07-25 (almost 5 years ago)
Added 2015-07-25 (almost 5 years ago)
Last Updated 2019-11-28 (7 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin