Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin WP Photo Album Plus wppa-album Parameter SQL Injection - Vulnerability Database
WP Plugin Wp Photo Album Plus

WordPress Plugin WP Photo Album Plus wppa-album Parameter SQL Injection

Critical
Reference: No Reference
Title: WordPress Plugin WP Photo Album Plus wppa-album Parameter SQL Injection
Overview:

WordPress Plugin WP Photo Album Plus is prone to an SQL injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application access or modify data or exploit latent vulnerabilities in the underlying database. WordPress Plugin WP Photo Album Plus version 4.1.1 is vulnerable other versions may also be affected.