Search

Find a vulnerability

Search criteria

    2 vulnerabilities found for Photo Gallery by Ays – Responsive Image Gallery by Ays Pro

    CVE-2021-24462 (GCVE-0-2021-24462)

    Vulnerability from nvd – Published: 2021-08-02 10:32 – Updated: 2024-08-03 19:35
    VLAI
    Title
    Photo Gallery by Ays - Responsive Image Gallery < 4.4.4 - Authenticated Blind SQL Injections
    Summary
    The get_gallery_categories() and get_galleries() functions in the Photo Gallery by Ays – Responsive Image Gallery WordPress plugin before 4.4.4 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in the admin dashboard
    Severity
    No CVSS data available.
    CWE
    Assigner
    References
    Impacted products
    Credits
    To Quang Duong
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T19:35:18.686Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://wpscan.com/vulnerability/e24dac6d-de48-42c1-bdde-4a45fb331376"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Photo Gallery by Ays \u2013 Responsive Image Gallery",
              "vendor": "Ays Pro",
              "versions": [
                {
                  "lessThan": "4.4.4",
                  "status": "affected",
                  "version": "4.4.4",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "To Quang Duong"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The get_gallery_categories() and get_galleries() functions in the Photo Gallery by Ays \u2013 Responsive Image Gallery WordPress plugin before 4.4.4 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in the admin dashboard"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 SQL Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-08-02T10:32:08.000Z",
            "orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81",
            "shortName": "WPScan"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://wpscan.com/vulnerability/e24dac6d-de48-42c1-bdde-4a45fb331376"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Photo Gallery by Ays - Responsive Image Gallery \u003c 4.4.4 - Authenticated Blind SQL Injections",
          "x_generator": "WPScan CVE Generator",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "contact@wpscan.com",
              "ID": "CVE-2021-24462",
              "STATE": "PUBLIC",
              "TITLE": "Photo Gallery by Ays - Responsive Image Gallery \u003c 4.4.4 - Authenticated Blind SQL Injections"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Photo Gallery by Ays \u2013 Responsive Image Gallery",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "4.4.4",
                                "version_value": "4.4.4"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Ays Pro"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "To Quang Duong"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The get_gallery_categories() and get_galleries() functions in the Photo Gallery by Ays \u2013 Responsive Image Gallery WordPress plugin before 4.4.4 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in the admin dashboard"
                }
              ]
            },
            "generator": "WPScan CVE Generator",
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-89 SQL Injection"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://wpscan.com/vulnerability/e24dac6d-de48-42c1-bdde-4a45fb331376",
                  "refsource": "MISC",
                  "url": "https://wpscan.com/vulnerability/e24dac6d-de48-42c1-bdde-4a45fb331376"
                }
              ]
            },
            "source": {
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81",
        "assignerShortName": "WPScan",
        "cveId": "CVE-2021-24462",
        "datePublished": "2021-08-02T10:32:08.000Z",
        "dateReserved": "2021-01-14T00:00:00.000Z",
        "dateUpdated": "2024-08-03T19:35:18.686Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2021-24462 (GCVE-0-2021-24462)

    Vulnerability from cvelistv5 – Published: 2021-08-02 10:32 – Updated: 2024-08-03 19:35
    VLAI
    Title
    Photo Gallery by Ays - Responsive Image Gallery < 4.4.4 - Authenticated Blind SQL Injections
    Summary
    The get_gallery_categories() and get_galleries() functions in the Photo Gallery by Ays – Responsive Image Gallery WordPress plugin before 4.4.4 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in the admin dashboard
    Severity
    No CVSS data available.
    CWE
    Assigner
    References
    Impacted products
    Credits
    To Quang Duong
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-03T19:35:18.686Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "https://wpscan.com/vulnerability/e24dac6d-de48-42c1-bdde-4a45fb331376"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "Photo Gallery by Ays \u2013 Responsive Image Gallery",
              "vendor": "Ays Pro",
              "versions": [
                {
                  "lessThan": "4.4.4",
                  "status": "affected",
                  "version": "4.4.4",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "value": "To Quang Duong"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The get_gallery_categories() and get_galleries() functions in the Photo Gallery by Ays \u2013 Responsive Image Gallery WordPress plugin before 4.4.4 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in the admin dashboard"
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-89",
                  "description": "CWE-89 SQL Injection",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2021-08-02T10:32:08.000Z",
            "orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81",
            "shortName": "WPScan"
          },
          "references": [
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "https://wpscan.com/vulnerability/e24dac6d-de48-42c1-bdde-4a45fb331376"
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Photo Gallery by Ays - Responsive Image Gallery \u003c 4.4.4 - Authenticated Blind SQL Injections",
          "x_generator": "WPScan CVE Generator",
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "contact@wpscan.com",
              "ID": "CVE-2021-24462",
              "STATE": "PUBLIC",
              "TITLE": "Photo Gallery by Ays - Responsive Image Gallery \u003c 4.4.4 - Authenticated Blind SQL Injections"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "Photo Gallery by Ays \u2013 Responsive Image Gallery",
                          "version": {
                            "version_data": [
                              {
                                "version_affected": "\u003c",
                                "version_name": "4.4.4",
                                "version_value": "4.4.4"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "Ays Pro"
                  }
                ]
              }
            },
            "credit": [
              {
                "lang": "eng",
                "value": "To Quang Duong"
              }
            ],
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The get_gallery_categories() and get_galleries() functions in the Photo Gallery by Ays \u2013 Responsive Image Gallery WordPress plugin before 4.4.4 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in the admin dashboard"
                }
              ]
            },
            "generator": "WPScan CVE Generator",
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "CWE-89 SQL Injection"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "https://wpscan.com/vulnerability/e24dac6d-de48-42c1-bdde-4a45fb331376",
                  "refsource": "MISC",
                  "url": "https://wpscan.com/vulnerability/e24dac6d-de48-42c1-bdde-4a45fb331376"
                }
              ]
            },
            "source": {
              "discovery": "UNKNOWN"
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81",
        "assignerShortName": "WPScan",
        "cveId": "CVE-2021-24462",
        "datePublished": "2021-08-02T10:32:08.000Z",
        "dateReserved": "2021-01-14T00:00:00.000Z",
        "dateUpdated": "2024-08-03T19:35:18.686Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }