Lucene search
K

416 matches found

WPVulnDB
WPVulnDB
added 2019/05/13 12:0 a.m.26 views

Photo Gallery by 10Web <= 1.5.22 - Authenticated XSS

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin was affected by an Authenticated XSS security vulnerability...

3.5CVSS2.7AI score0.01295EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2019/05/10 12:0 a.m.27 views

Form Maker by 10Web < 1.13.3 - Authenticated SQL Injection

The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder WordPress plugin was affected by an Authenticated SQL Injection security vulnerability...

7.5CVSS2.6AI score0.06214EPSS
Exploits6References1Affected Software1
NVD
NVD
added 2019/04/29 2:29 p.m.31 views

CVE-2019-11590

The 10Web Form Maker plugin before 1.13.5 for WordPress allows CSRF via the wp-admin/admin-ajax.php action parameter, with resultant local file inclusion via directory traversal, because there can be a discrepancy between the $POST'action' value and the $GET'action' value, and the latter is...

8.8CVSS8.6AI score0.01169EPSS
Exploits1References3
CVE
CVE
added 2019/04/29 1:46 p.m.76 views

CVE-2019-11590

The 10Web Form Maker plugin for WordPress is affected by CVE-2019-11590 (versions

8.8CVSS8.5AI score0.01169EPSS
Exploits1References3Affected Software1
Patchstack
Patchstack
added 2019/04/10 12:0 a.m.11 views

WordPress Form Maker by 10Web plugin <= 1.13.4 - Cross-Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability found by Panagiotis Vagenas in WordPress Form Maker by 10Web plugin versions = 1.13.4. Solution Update the WordPress Form Maker by 10Web plugin to the latest available version at least 1.13.5...

3.4AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2018/05/01 12:0 a.m.24 views

Form Maker by WD < 1.12.24 - CSV Injection

The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder WordPress plugin was affected by a CSV Injection security vulnerability...

6.8CVSS2.4AI score0.04672EPSS
Exploits5References3Affected Software1
WPVulnDB
WPVulnDB
added 2017/08/20 12:0 a.m.25 views

Photo Gallery by WD <= 1.3.50 - Authenticated SQL Injection

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin was affected by an Authenticated SQL Injection security vulnerability...

6.5CVSS3AI score0.01593EPSS
Exploits0References2Affected Software1
WPVulnDB
WPVulnDB
added 2017/06/16 12:0 a.m.14 views

Photo Gallery by WD <= 1.3.42 - Authenticated Path Traversal

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin was affected by an Authenticated Path Traversal security vulnerability...

3.4AI score
Exploits0References2Affected Software1
WPVulnDB
WPVulnDB
added 2015/03/19 12:0 a.m.16 views

Photo Gallery <= 1.2.11 - Cross-Site Scripting (XSS)

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin was affected by a Cross-Site Scripting XSS security vulnerability...

3.5CVSS1.8AI score0.00873EPSS
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2015/02/12 12:0 a.m.26 views

Photo Gallery <= 1.2.5 - Unrestricted File Upload

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin was affected by an Unrestricted File Upload security vulnerability...

6.5CVSS2.6AI score0.45354EPSS
Exploits7References1Affected Software1
WPVulnDB
WPVulnDB
added 2015/01/28 12:0 a.m.35 views

Photo Gallery <= 1.2.8 - Multiple Authenticated Reflected XSS

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin was affected by a Multiple Authenticated Reflected XSS security vulnerability. PoC /wp-admin/admin-ajax.php?action=addImages=700=550=jpg,jpeg,png,gif=bwgaddpreviewimageby=name";...

3.5CVSS1AI score0.02331EPSS
Exploits4References1Affected Software1
WPVulnDB
WPVulnDB
added 2015/01/28 12:0 a.m.35 views

Photo Gallery <= 1.2.8 - Blind SQL Injection

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin was affected by a Blind SQL Injection security vulnerability...

6.5CVSS2.5AI score0.01655EPSS
Exploits3References2Affected Software1
WPVulnDB
WPVulnDB
added 2015/01/12 9:10 p.m.16 views

Photo Gallery <= 1.2.7 - Unauthenticated SQL injection

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin was affected by an Unauthenticated SQL injection security vulnerability...

7.5CVSS3.3AI score0.02131EPSS
Exploits1References2Affected Software1
WPVulnDB
WPVulnDB
added 2014/10/01 12:0 a.m.20 views

Photo Gallery 1.1.30 - Cross Site Scripting

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin was affected by a Cross Site Scripting security vulnerability...

4.3CVSS1.9AI score0.02374EPSS
Exploits3References2Affected Software1
WPVulnDB
WPVulnDB
added 2014/08/01 12:0 a.m.7 views

Form Maker 1.6.4 - front_end_form_maker.php Unspecified XSS

The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder WordPress plugin was affected by a frontendformmaker.php Unspecified XSS security vulnerability...

2.2AI score
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2014/05/07 12:0 a.m.56 views

Photo-Gallery <= 1.2.41 - UploadHandler.php File Upload CSRF

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin was affected by an UploadHandler.php File Upload CSRF security vulnerability...

6.8CVSS2.6AI score0.00819EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder