The gallery-photo-gallery plugin prior to 1.0.1 for WordPress has SQL injection.
ays-pro photo gallery