cleantalk
Vulnerabilities and Security Researches

Unite Gallery Lite, CVE-2015-9446

CVE, Research URL

CVE-2015-9446

Home page URL

Security reports for Unite Gallery Lite

Application

Unite Gallery Lite

Published on
Sep 26, 2019
Research Description
The unite-gallery-lite plugin before 1.5 for WordPress has SQL injection via data[galleryID] to wp-admin/admin-ajax.php.
Affected versions
Min -, max 1.5.
Status
vulnerable
Previous vulnerability researches
Unite Gallery Lite (CVE-2024-43207) , Aug 13, 2024
Unite Gallery Lite (CVE-2023-34183) , Jun 07, 2024
Unite Gallery Lite (CVE-2023-33310) , Jun 07, 2024
Unite Gallery Lite (CVE-2015-9446) , Jun 07, 2024
Unite Gallery Lite (CVE-2015-9445) , Jun 07, 2024
New vulnerability
Calculated Fields Form (CVE-2024-13381) , May 03, 2025
KiwiChat NextClient (CVE-2025-3670) , May 03, 2025
SureTriggers – Connect All Your Plugins, Apps, Tools & Automate Everything! (CVE-2025-27007) , May 03, 2025
Taxonomy Chain Menu (CVE-2025-3748) , May 03, 2025
Able Player, accessible HTML5 media player (CVE-2025-3752) , May 02, 2025