CVE-2017-1002028
Description
Vulnerability in wordpress plugin wordpress-gallery-transformation v1.0, SQL injection is in ./wordpress-gallery-transformation/gallery.php via $jpic parameter being unsanitized before being passed into an SQL query.
CWE
- (none)
Affected
- Angry Byte / wordpress-gallery-transformation — v=unspecified <1.0 [affected]
CVSS
- (none)
References
- https://wpvulndb.com/vulnerabilities/8888 x_refsource_MISC
- http://www.vapidlabs.com/advisory.php?v=199 x_refsource_MISC
- https://wordpress.org/plugins/wordpress-gallery-transformation/ x_refsource_MISC
Source
cvelistV5-main/cves/2017/1002xxx/CVE-2017-1002028.json