WordPress WP Photo Album Plugin *photo* SQL Injection Date: Wednesday, February 20, 2008 @ 18:15:38 CST Topic: Security SECUNIA ADVISORY ID: SA28988 VERIFY ADVISORY: http://secunia.com/advisories/28988/ CRITICAL: Moderately critical IMPACT: Manipulation of data SOFTWARE: WP Photo Album (WPPA) 1.x (plugin for WordPress) http://secunia.com/product/17641/ DESCRIPTION: A vulnerability has been reported in the WP Photo Album (WPPA) plugin for WordPress, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the "photo" parameter in the WordPress installation's index.php script is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. The vulnerability is reported in version 1.0. Prior versions may also be affected. SOLUTION: Update to version 1.1. PROVIDED AND/OR DISCOVERED BY: Reported by S@BUN ORIGINAL ADVISORY: http://milw0rm.com/exploits/5135 This article comes from Ravens PHP Scripts https://www.ravenphpscripts.com The URL for this story is: https://www.ravenphpscripts.com/modules.php?name=News&file=article&sid=3246