The get_portfolios() and get_portfolio_attributes() functions in the class-portfolio-responsive-gallery-list-table.php and class-portfolio-responsive-gallery-attributes-list-table.php files of the Portfolio Responsive Gallery WordPress plugin before 1.1.8 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in the admin dashboard
[
{
"product": "Portfolio Responsive Gallery",
"vendor": "Ays Pro",
"versions": [
{
"lessThan": "1.1.8",
"status": "affected",
"version": "1.1.8",
"versionType": "custom"
}
]
}
]