CVE-2016-10889

The nextgen-gallery plugin before 2.1.57 for WordPress has SQL injection via a gallery name.

We have discovered 14,344 live websites that are affected by CVE-2016-10889.

Test my site



Affected Software

Product  NextGEN Gallery
Category Photo Galleries
Vulnerable Domains14,344 live websites (15.90% of NextGEN Gallery install base)
Vulnerable Versions
  • from 0 before 2.1.57
Vulnerable Versions Count98 versions ( 27.76% of all versions)



Details

  • Published - Aug 14, 2019
  • Updated - Aug 6, 2024

CVE-2016-10889 usage by Country

United States3,208 websites


Germany1,965 websites
Russia1,234 websites
France1,006 websites
Poland669 websites
Italy549 websites
Czech Republic495 websites
GB491 websites
Netherlands363 websites
Japan315 websites

CVE-2016-10889 usage by TLD

.com4,808 websites
.de1,151 websites
.ru1,095 websites
.org559 websites
.pl535 websites
.net434 websites
.cz432 websites
.it418 websites
.fr409 websites
.co.uk350 websites

Vulnerable Versions

Vulnerable versions are highlighted in red

Websites affected by CVE-2016-10889

Top websites that are affected by CVE-2016-10889. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
************.com Italy**,***
**********.cu Cuba**,***
*******.com Singapore**,***
****.fr France**,***
*********.fr France***,***
*******.com Germany***,***
*****.com United States***,***
**********.com Italy***,***
******.it France***,***
**************.net United States***,***
See full domain list

FAQ

A total of 14,344 websites have been identified as vulnerable to CVE-2016-10889, discovered through global website indexing conducted by WebTechSurvey.
NextGEN Gallery is susceptible to CVE-2016-10889 vulnerability.
NextGEN Gallery versions before 2.1.57 are vulnerable to CVE-2016-10889.
Version 2.1.57 of NextGEN Gallery addresses the CVE-2016-10889 security vulnerability.