SQL Injection Vulnerability in NextGEN Gallery for WordPress

Just a quick update for our clients: we received notification this morning about a major new “vulnerability” and we have updated all our clients with the patch.

Details: We were notified this morning about a potential security vulnerability (we use Sucuri notifications) that affected many of our client websites. Apparently, a popular plugin (NextGen Gallery for WordPress) was found to have a severe vulnerability.

We patched all the clients who use this plugin, by updating to version 2.1.79 (for anyone on 2.1.77), before any miscreants took advantage…It will be curious how this affects the wider WordPress community since so many people use old and unpatched versions of this popular free plugin.

Recent Posts

Leave a Comment

Contact Us

We're not around right now. But you can send us an email and we'll get back to you, asap.

Start typing and press Enter to search

X
X

Let's Talk

We'd Love toHear From You!

 

970-930-1882

contact BlizzardPress