Multiple SQL injection vulnerabilities in upload.php in the Powerplay Gallery plugin 3.3 for WordPress allow remote malicious users to execute arbitrary SQL commands via the (1) albumid or (2) name parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
powerplay gallery project powerplay gallery 3.3 |