John Bradshaw Np Gallery Plugin vulnerabilities
2 known vulnerabilities affecting john_bradshaw/np_gallery_plugin.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2010-5041P3HIGHCVSS 7.5PoCv0.942011-11-02
CVE-2010-5041 [HIGH] CWE-89 CVE-2010-5041: SQL injection vulnerability in index.php in the NP_Gallery plugin 0.94 for Nucleus allows remote att
SQL injection vulnerability in index.php in the NP_Gallery plugin 0.94 for Nucleus allows remote attackers to execute arbitrary SQL commands via the id parameter in a plugin action.
nvd
CVE-2010-5040P3MEDIUMCVSS 6.8PoCv0.942011-11-02
CVE-2010-5040 [MEDIUM] CWE-94 CVE-2010-5040: PHP remote file inclusion vulnerability in nucleus/plugins/NP_gallery.php in the NP_Gallery plugin 0
PHP remote file inclusion vulnerability in nucleus/plugins/NP_gallery.php in the NP_Gallery plugin 0.94 for Nucleus allows remote attackers to execute arbitrary PHP code via a URL in the DIR_NUCLEUS parameter. NOTE: some of these details are obtained from third party information.
nvd