Approved changes feed: RSS · Atom

cpe:2.3:a:10web:photo_gallery:1.2.7:*:*:*:*:wordpress:*:*

part: a version: 1.2.7 update: *

Vendor10Web (a48aaa7e-f686-5cd9-9b59-60b5c3bf60d0)
ProductPhoto Gallery (fc3ac136-ce28-539a-9648-4f410b3a7ae1)
Edition*
Language*
Software edition*
Target softwarewordpress
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2015-1055 vulnerable 2026-06-08 05:06:24.917069 Details available
SQL injection vulnerability in the Photo Gallery plugin 1.2.7 for WordPress allows remote attackers to execute arbitrary SQL commands via the order_by parameter in a GalleryBox action to wp-admin/admin-ajax.php.
Published: 2015-01-16T15:00:00.000Z
Updated: 2024-09-16T16:38:56.604Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.