Cancel

Tag: sql injection

  • NextGEN Gallery Patches Critical SQL Injection Vulnerability

    NextGEN Gallery Patches Critical SQL Injection Vulnerability

    Slavco Mihajloski, security researcher at Sucuri, has discovered a critical SQL injection vulnerability in NextGEN Gallery, a popular WordPress plugin that’s active on more than a million sites. Mihajloski gives the vulnerability a 9 out of 10 on Sucuri’s DREAD scale. Dread stands for Damage, Reproducibility, Exploitability, Affected Users, and Discoverability. Each category receives a score between 0…

    Jeff Chandler

  • High Risk Security Vulnerability Discovered in WP Slimstat, Update Immediately

    High Risk Security Vulnerability Discovered in WP Slimstat, Update Immediately

    If you use WP Slimstat, you’ll want to make sure you’re using version 3.9.6 or later as Sucuri has discovered a severe SQL injection vulnerability in versions 3.9.5 and lower. WP Slimstat is an analytics plugin for WordPress that provides real-time monitoring, heatmaps, and other features to monitor website data. According to Sucuri, the vulnerability…

    Jeff Chandler