ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Huge-IT Image Gallery Plugin 1.8.9 - Multiple Vulnerabilities

Product
Huge IT Image Gallery
Description
Multiple vulnerabilities were found in Huge-IT Image Gallery 1.8.9 plugin. 1) It's prone to a SQL injection vulnerability 2) Also, there's a Full Path Disclosure vulnerability.
Solution
Update Huge-IT Image Gallery plugin to 1.9.0 version.
Classification
Type Multi
References
Exploit DB
CVE
Name CVE-N/A
Versions
Affected In <= 1.8.9
Fixed In 1.9.0
Disclosure date
2016-05-12
Credits
Gwendal Le Coguic