The Portfolio Gallery – Photo Gallery for WordPress is a plugin that has a security issue when using a specific parameter in versions prior to 1.1.8. An attacker with administrative privileges can use this parameter to extract sensitive information from the database due to the lack of proper escaping and preparation of the SQL query.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
