Posted on

nextgen-gallery Plugin up to 2.1.56 on WordPress Gallery Name sql injection

A vulnerability, which was classified as critical, was found in nextgen-gallery Plugin up to 2.1.56 on WordPress (Photo Gallery Software). Affected is some unknown processing of the component Gallery Name Handler. Upgrading to version 2.1.57 eliminates this vulnerability.