SQL Injection Vulnerability in WP Photo Album Plus by Jacob N. Breetvelt
CVE-2026-54829
7.5HIGH
What is CVE-2026-54829?
An SQL injection vulnerability exists in WP Photo Album Plus by Jacob N. Breetvelt, allowing attackers to execute arbitrary SQL commands through improper neutralization of special elements in user inputs. This can lead to unauthorized access to sensitive data and manipulation of the database. Affected versions include 9.1.13.005 and earlier, presenting a significant risk for websites relying on this plugin.
Affected Version(s)
WP Photo Album Plus <= 9.1.13.005