Vulnerabilities > 10Web > Photo Gallery > 1.2.32

DATE CVE VULNERABILITY TITLE RISK
2019-07-30 CVE-2019-14313 SQL Injection vulnerability in 10Web Photo Gallery
A SQL injection vulnerability exists in the 10Web Photo Gallery plugin before 1.5.31 for WordPress.
network
low complexity
10web CWE-89
critical
 9.8
9.8
2017-08-21 CVE-2017-12977 SQL Injection vulnerability in 10Web Photo Gallery
The Web-Dorado "Photo Gallery by WD - Responsive Photo Gallery" plugin before 1.3.51 for WordPress has a SQL injection vulnerability related to bwg_edit_tag() in photo-gallery.php and edit_tag() in admin/controllers/BWGControllerTags_bwg.php.
network
low complexity
10web CWE-89
6.5
6.5