vendor:
Gallery WD
by:
Ihsan Sencan
9.8
CVSS
CRITICAL
SQL Injection
89
CWE
Product Name: Gallery WD
Affected Version From: 1.3.6
Affected Version To: 1.3.6
Patch Exists: YES
Related CWE: CVE-2018-5981
CPE: a:web-dorado:gallery_wd:1.3.6
Metasploit:
N/A
Other Scripts:
N/A
Platforms Tested: WiN7_x64/KaLiLinuX_x64
2018
Joomla! Component Gallery WD 1.3.6 – SQL Injection
Joomla! Component Gallery WD 1.3.6 is vulnerable to SQL Injection. An attacker can inject malicious SQL queries via the 'tag_id' and 'gallery_id' parameters in the 'index.php' page. This can be exploited to read, modify or delete data from the database, or to execute arbitrary system commands.
Mitigation:
Input validation should be used to prevent SQL injection attacks. Sanitize user input and escape special characters.