cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2021-24462,https://securityvulnerability.io/vulnerability/CVE-2021-24462,Photo Gallery by Ays - Responsive Image Gallery < 4.4.4 - Authenticated Blind SQL Injections,"The get_gallery_categories() and get_galleries() functions in the Photo Gallery by Ays – Responsive Image Gallery WordPress plugin before 4.4.4 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in the admin dashboard",Wordpress,Photo Gallery By Ays – Responsive Image Gallery,8.8,HIGH,0.001129999989643693,false,,false,false,false,,false,false,2021-08-02T10:32:08.000Z,0