ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Robo Gallery Plugin <= 2.0.14 - Remote Code Execution

Product
Robo Gallery
Description
This plugin is prone to a remote code execution vulnerability. It allows the attackers to execute own malicious php commands to compromise the web-application or connected dbms.
Solution
Update the plugin.
Classification
Type Arbitrary Code Execution
OWASP Top 10 A1: Injection
References
SecLists
CVE
Name CVE-N/A
Versions
Affected In <= 2.0.14
Fixed In 2.0.15
Disclosure date
2016-04-12
Submitter
ThreatPress