Vulnerabilities > WP Video Gallery Free Project

DATE CVE VULNERABILITY TITLE RISK
2022-05-09 CVE-2022-0826 SQL Injection vulnerability in Wp-Video-Gallery-Free Project Wp-Video-Gallery-Free
The WP Video Gallery WordPress plugin through 1.7.1 does not sanitise and escape a parameter before using it in a SQL statement via an AJAX action, leading to an SQL Injection exploitable by unauthenticated users
network
low complexity
wp-video-gallery-free-project CWE-89
7.5