SQL Injection Vulnerability in Imagely NextGEN Gallery Plugin for WordPress

SQL Injection Vulnerability in Imagely NextGEN Gallery Plugin for WordPress

CVE-2019-14314 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

A SQL injection vulnerability exists in the Imagely NextGEN Gallery plugin before 3.2.11 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system via modules/nextgen_gallery_display/package.module.nextgen_gallery_display.php.

Learn more about our Wordpress Pen Testing.