cvedb.io
CVE-2015-6522
UNKNOWN · CVSS n/a
EPSS exploitation probability: 0%
Published 2015-08-19T15:59:11.947 · Last modified 2026-06-17T00:31:00.490

Summary

SQL injection vulnerability in the WP Symposium plugin before 15.8 for WordPress allows remote attackers to execute arbitrary SQL commands via the size parameter to get_album_item.php.

Affected products

wpsymposium — wp_symposium

Does this affect you?

Add your gear to cvedb and we'll alert you only when wpsymposium ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.