Lucene search

CVE-2024-2296

🗓️ 06 Apr 2024 09:07:15Reported by WordfenceType

Photo Gallery by 10Web WordPress plugin CVE-2024-2296 vulnerabilit

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
NVD	CVE-2024-2296	6 Apr 202409:15	–	nvd
WPVulnDB	Photo Gallery by 10Web < 1.8.22 - Admin+ Stored XSS via SVG	8 Apr 202400:00	–	wpvulndb
Patchstack	WordPress Photo Gallery by 10Web Plugin <= 1.8.21 is vulnerable to Cross Site Scripting (XSS)	8 Apr 202400:00	–	patchstack
Cvelist	CVE-2024-2296	6 Apr 202408:38	–	cvelist
Vulnrichment	CVE-2024-2296	6 Apr 202408:38	–	vulnrichment
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (April 1, 2024 to April 7, 2024)	11 Apr 202417:23	–	wordfence

Nvd

Vulners

Node

10web photo_galleryRange<1.8.22wordpress

[
  {
    "vendor": "10web",
    "product": "Photo Gallery by 10Web – Mobile-Friendly Image Gallery",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "1.8.21",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/994a044d-db69-4f2d-9027-cf3665446ed3
plugins	www.plugins.trac.wordpress.org/changeset

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Apr 2024 09:15Current

5.6Medium risk

Vulners AI Score5.6

CVSS34.8 - 5.5

EPSS0.00071

SSVC

CWE-79