CVE-2014-5180 in hdw-player-video-player-video-gallery信息

摘要

由 VulDB • 2026-06-13

HDW Player Plugin (hdw-player-video-player-video-gallery) 2.4.2 for WordPress 的视频页面存在 SQL injection 漏洞,允许远程经过身份验证的管理员通过向 wp-admin/admin.php 的编辑操作中的 id 参数发送任意 SQL 命令来执行恶意代码。

VulDB is the best source for vulnerability data and more expert information about this specific topic.

来源

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!