cleantalk
Vulnerabilities and Security Researches

WP Easy Gallery – WordPress Gallery Plugin, f55605a14004ca6c080eceedd992e8adb89d1740

CVE, Research URL

f55605a14004ca6c080eceedd992e8adb89d1740

Home page URL

Security reports for WP Easy Gallery – WordPress Gallery Plugin

Application

WP Easy Gallery – WordPress Gallery Plugin

Published on
May 15, 2015
Research Description
WP Easy Gallery &#8211; WordPress Gallery Plugin [wp-easy-gallery] < 2.7.1 (closed) WordPress WP Easy Gallery Plugin <= 2.7 - SQL Injection This plugin is prone to SQL injection via admin/overview.php galleryId parameter and admin/add-images.php multiple parameter. Because of this vulnerability, remote authenticated users can execute arbitrary SQL commands. Update the plugin.
Affected versions
max 2.7.1.
Status
vulnerable
Previous vulnerability researches
Help Center by BestWebSoft (CVE-2017-2171) , Jun 07, 2024
Help Center by BestWebSoft (CVE-2017-18542) , Jun 07, 2024
Help Center by BestWebSoft (efd816c3-90d4-40bf-850a-0e4c1a756694) , Jun 16, 2026
New vulnerability
leenk.me (753d31765913b4d2dbb8af0a5512e5f1f8c70c61) , Jun 16, 2026
Social Hashtags (5abd4657-8a58-4d97-b8cb-b67235ab5b8a) , Jun 16, 2026
Social Hashtags (1965c7b04565befbb11c28b56cb6922733a47b03) , Jun 16, 2026
Social Hashtags (a7cf6766582e354e702766a86f85716127d19bdc) , Jun 16, 2026
Simple Calendar &#8211; Google Calendar Plugin (e98a6264-9c5a-417f-b2f8-bd0017b411a0) , Jun 16, 2026