NotCVE - vendor:"Huge-it" product:"Portfolio Gallery"

4 results (0.002 seconds)

CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0

CVE-2014-125101 – Portfolio Gallery Plugin sql injection

https://notcve.org/view.php?id=CVE-2014-125101

27 May 2023 — A vulnerability classified as critical has been found in Portfolio Gallery Plugin up to 1.1.8 on WordPress. This affects an unknown part. The manipulation leads to sql injection. It is possible to initiate the attack remotely. Upgrading to version 1.1.9 is able to address this issue. • https://github.com/wp-plugins/portfolio-gallery/commit/58ed88243e17df766036f4857041edaf358076d3 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1

CVE-2016-1000115

https://notcve.org/view.php?id=CVE-2016-1000115

21 Oct 2016 — Huge-IT Portfolio Gallery manager v1.1.0 SQL Injection and XSS Inyección SQL y XSS en el gestor Huge-IT Portfolio Gallery v1.1.0 • http://huge-it.com/joomla-portfolio-gallery • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1

CVE-2016-1000116

https://notcve.org/view.php?id=CVE-2016-1000116

CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 3

CVE-2016-1000124 – Joomla! Component Huge-IT Portfolio Gallery Plugin 1.0.6 - SQL Injection

https://notcve.org/view.php?id=CVE-2016-1000124

30 Sep 2016 — Unauthenticated SQL Injection in Huge-IT Portfolio Gallery Plugin v1.0.6 Injection SQL no autenticada en Huge-IT Portfolio Gallery Plugin v1.0.6 Joomla Huge-IT Portfolio Gallery plugin version 1.0.6 suffers from a remote SQL injection vulnerability. • https://packetstorm.news/files/id/138921 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •