Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Imagely Subscribe
Filtered by product Nextgen Gallery

CVSS v3 Filter

ALL
NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2013-3684 1 Imagely 1 Nextgen Gallery 2020-02-13 10.0 HIGH 9.8 CRITICAL
NextGEN Gallery plugin before 1.9.13 for WordPress: ngggallery.php file upload
CVE-2019-14314 1 Imagely 1 Nextgen Gallery 2019-12-16 7.5 HIGH 9.8 CRITICAL
A SQL injection vulnerability exists in the Imagely NextGEN Gallery plugin before 3.2.11 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system via modules/nextgen_gallery_display/package.module.nextgen_gallery_display.php.
CVE-2016-10889 1 Imagely 1 Nextgen Gallery 2019-08-16 7.5 HIGH 9.8 CRITICAL
The nextgen-gallery plugin before 2.1.57 for WordPress has SQL injection via a gallery name.