CVE-2026-54829
Severity CVSS v4.0:
Pending analysis
Type:
CWE-89
SQL Injection
Publication date:
25/06/2026
Last modified:
25/06/2026
Description
Improper Neutralization of Special Elements used in an SQL Command (&#39;SQL Injection&#39;) vulnerability in Jacob N. Breetvelt WP Photo Album Plus allows Blind SQL Injection.<br />
<br />
This issue affects WP Photo Album Plus: from n/a through 9.1.13.005.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH



