Vulnerabilities (CVE)

Filtered by vendor Infoway Subscribe
Filtered by product Social Photo Gallery
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-14467 1 Infoway 1 Social Photo Gallery 2024-11-21 4.6 MEDIUM 7.8 HIGH
The Social Photo Gallery plugin 1.0 for WordPress allows Remote Code Execution by creating an album and attaching a malicious PHP file in the cover photo album, because the file extension is not checked.