Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-3478

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2013-3478
Last Modified 08 Mar 2014 12:08:26
Published 05 Mar 2014 11:37:40
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2013-3478

Summary

SQL injection vulnerability in Apptha WordPress Video Gallery 2.0, 1.6, and earlier for WordPress allows remote attackers to execute arbitrary SQL commands via the playid parameter to index.php.

Vulnerable Systems

Application

  • Apptha Video Gallery Plugin 1.6

  • Apptha Video Gallery Plugin 2.0


References

XF - wpvideogallery-cve20133478-sql-injection(84239)

BID - 59845

SECUNIA - 51344


Last Updated: 27 May 2016 11:04:32