SQL injection vulnerability in zp-core/zp-extensions/wordpress_import.php in Zenphoto prior to 1.4.5.4 allows remote authenticated administrators to execute arbitrary SQL commands via the tableprefix parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zenphoto zenphoto |
||
zenphoto zenphoto 1.4.5.1 |
||
zenphoto zenphoto 1.4.5.2 |
||
zenphoto zenphoto 1.4.5 |