CVE-2016-10940 (zm-gallery)

The zm-gallery plugin 1.0 for WordPress has SQL injection via the order parameter.

View Full Alert

Related Posts

  • CVE-2016-10937

    IMAPFilter through 2.6.12 does not validate the hostname in an SSL certificate. View Full Alert

  • CVE-2016-10761

    Logitech Unifying devices before 2016-02-26 allow keystroke injection, bypassing encryption, aka MouseJack. View Full Alert

  • CVE-2016-10814

    cPanel before 57.9999.54 allows demo-mode escape via show_template.stor (SEC-119). View Full Alert