CVE-2016-10940

CVE-2016-10940

EPSS 5.5%

The zm-gallery plugin 1.0 for WordPress has SQL injection via the order parameter.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://lenonleite.com.br/en/2016/12/16/zm-gallery-1-plugin-wordpress-blind-injection/https://wordpress.org/plugins/zm-gallery/#developers