ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Cool Video Gallery Plugin <= 1.9 - Command Injection

Product
Cool Video Gallery
Description
This vulnerability in lib/core.php allows an attacker to execute arbitrary code via shell metacharacters in the "Width of preview image".
Solution
Update the plugin.
Classification
Type Unknown
References
CVE Mitre
CVE
Name CVE-2015-7527
Versions
Affected In <= 1.9
Fixed In 2.0
Disclosure date
2015-09-29