CVE-2015-5599

Publication date

2015-08-18 15:00:00

Family

mitre

State

PUBLISHED

Description

Multiple SQL injection vulnerabilities in upload.php in the Powerplay Gallery plugin 3.3 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) albumid or (2) name parameter.