This NextGEN Smooth Gallery plugin is prone to an SQL injection vulnerability. It fails to clean up user's data before using it in an SQL query. Also, this plugin allows an attacker to compromise the access, application, modify data or exploit hidden vulnerabilities in the underlying database.
Update the plugin.
Found a vulnerability that puts your sites at risk?