Apptha Contus Video Gallery vulnerabilities
2 known vulnerabilities affecting apptha/contus_video_gallery.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1LOW1
Vulnerabilities
Page 1 of 1
CVE-2014-9097P3HIGHCVSS 7.5PoCv2.52014-11-26
CVE-2014-9097 [HIGH] CWE-89 CVE-2014-9097: Multiple SQL injection vulnerabilities in the Apptha WordPress Video Gallery (contus-video-gallery)
Multiple SQL injection vulnerabilities in the Apptha WordPress Video Gallery (contus-video-gallery) plugin 2.5, possibly as distributed before 2014-07-23, for WordPress allow (1) remote attackers to execute arbitrary SQL commands via the vid parameter in a myextract action to wp-admin/admin-ajax.php or (2) remote authenticated users to execute arbitrary S
nvd
CVE-2014-9098P4LOWCVSS 3.5PoCv2.52014-11-26
CVE-2014-9098 [LOW] CWE-79 CVE-2014-9098: Multiple cross-site scripting (XSS) vulnerabilities in the Apptha WordPress Video Gallery (contus-vi
Multiple cross-site scripting (XSS) vulnerabilities in the Apptha WordPress Video Gallery (contus-video-gallery) plugin 2.5, possibly before 2014-07-23, for WordPress allow remote authenticated users to inject arbitrary web script or HTML via the videoadssearchQuery parameter to (1) videoads/videoads.php, (2) video/video.php, or (3) playlist/playlist.php.
nvd