MidnightBSD

Advisories for cool_video_gallery_project

CVE-2015-7527 HIGH

lib/core.php in the Cool Video Gallery plugin 1.9 for WordPress allows remote attackers to execute arbitrary code via shell metacharacters in the "Width of preview image" and possibly other input fields in the "Video Gallery Settings" page.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
cool_video_gallery_project cool_video_gallery 1.9