cleantalk
Vulnerabilities and Security Researches

WP Photo Album Plus, 0870d4ecb90d9a5be79d1a28205fbf2762e7e054

CVE, Research URL

0870d4ecb90d9a5be79d1a28205fbf2762e7e054

Home page URL

Security reports for WP Photo Album Plus

Application

WP Photo Album Plus

Published on
Oct 15, 2011
Research Description
WP Photo Album Plus [wp-photo-album-plus] < 4.1.2 WordPress Photo Album Plus Plugin <= 4.1.1 - SQL Injection WPPhoto Album Plus plugin is prone to an SQL injection. This vulnerability allows an attacker to modify data, alter queries to the application SQL database, compromise the access and application or exploit hidden vulnerabilities in the underlying database. Update the plugin.
Affected versions
max 4.1.2.
Status
vulnerable
Previous vulnerability researches
WP Photo Album Plus (CVE-2021-25115) , Jun 07, 2024
WP Photo Album Plus (CVE-2015-3647) , Jun 07, 2024
WP Photo Album Plus (CVE-2023-49813) , Jun 07, 2024
WP Photo Album Plus (CVE-2023-49774) , Jun 07, 2024
WP Photo Album Plus (CVE-2024-4037) , Jun 07, 2024
New vulnerability
Frontend File Manager Plugin (CVE-2026-8379) , Jun 25, 2026
Frontend File Manager Plugin (CVE-2026-8378) , Jun 25, 2026
RentMy Real-Time Rental Management Plugin (CVE-2026-8690) , Jun 25, 2026
AdRotate Banner Manager &#8211; The only ad manager you&#039;ll need (CVE-2026-12242) , Jun 25, 2026
Restaurant Menu and Food Ordering (CVE-2026-54835) , Jun 25, 2026