Lucene search
+L

295 matches found

OSV
OSV
added 2025/12/03 3:16 a.m.5 views

CVE-2025-13646

The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'ajaxunzipfile' function in versions 2.13.1 to 2.13.2. This makes it possible for authenticated attackers, with Author-level access and above, to upload arbitrary files...

6.6CVSS7.5AI score0.00695EPSS
Exploits0References5
NVD
NVD
added 2025/12/03 3:16 a.m.12 views

CVE-2025-13646

The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'ajaxunzipfile' function in versions 2.13.1 to 2.13.2. This makes it possible for authenticated attackers, with Author-level access and above, to upload arbitrary files...

7.5CVSS0.00695EPSS
Exploits0References5
NVD
NVD
added 2025/12/03 3:15 a.m.9 views

CVE-2025-13645

The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'ajaxunzipfile' function in versions 2.13.1 to 2.13.2. This makes it possible for authenticated attackers, with Author-level access and above, to delete arbitrary...

7.2CVSS0.0095EPSS
Exploits0References6
OSV
OSV
added 2025/12/03 3:15 a.m.6 views

CVE-2025-13645

The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'ajaxunzipfile' function in versions 2.13.1 to 2.13.2. This makes it possible for authenticated attackers, with Author-level access and above, to delete arbitrary...

7.2CVSS7.5AI score0.0095EPSS
Exploits0References6
EUVD
EUVD
added 2025/12/03 2:25 a.m.8 views

EUVD-2025-200725

The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'ajaxunzipfile' function in versions 2.13.1 to 2.13.2. This makes it possible for authenticated attackers, with Author-level access and above, to delete arbitrary...

7.2CVSS7.1AI score0.0095EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/11/22 8:35 a.m.11 views

CVE-2025-12138

The URL Image Importer plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in all versions up to, and including, 1.0.6. This is due to the plugin relying on a user-controlled Content-Type HTTP header to validate file uploads in the...

8.8CVSS7.5AI score0.00617EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/21 8:28 a.m.4 views

CVE-2025-13149 Schedule Post Changes With PublishPress Future: Unpublish, Delete, Change Status, Trash, Change Categories <= 4.9.1 - Authenticated (Author+) Missing Authorization to Post/Page Status Modification

The Schedule Post Changes With PublishPress Future: Unpublish, Delete, Change Status, Trash, Change Categories plugin for WordPress is vulnerable to unauthorized modification of data due to a missing authorization check on the "saveFutureActionData" function in all versions up to, and including,...

4.3CVSS5AI score0.00168EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/21 7:31 a.m.12 views

CVE-2025-12138 URL Image Importer <= 1.0.6 - Authenticated (Author+) Arbitrary File Upload

The URL Image Importer plugin for WordPress is vulnerable to arbitrary file uploads due to insufficient file type validation in all versions up to, and including, 1.0.6. This is due to the plugin relying on a user-controlled Content-Type HTTP header to validate file uploads in the...

8.8CVSS0.00617EPSS
Exploits0References6
Patchstack
Patchstack
added 2025/11/20 11:31 p.m.8 views

WordPress Post Expirator plugin <= 4.9.1 - Authenticated (Author+) Missing Authorization to Post/Page Status Modification vulnerability

Authenticated Author+ Missing Authorization to Post/Page Status Modification vulnerability discovered by Athiwat Tiprasaharn Jitlada in WordPress Plugin Post Expirator versions = 4.9.1...

4.3CVSS7AI score0.00168EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2025/11/20 9:37 p.m.9 views

CVE-2025-12359

The Responsive Lightbox & Gallery plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.5.3 via the 'getimagesizebyurl' function. This is due to insufficient validation of user-supplied URLs when determining image dimensions for gallery items...

5.4CVSS5.7AI score0.00233EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/19 6:31 a.m.5 views

EUVD-2025-198106

The Responsive Lightbox & Gallery plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.5.3 via the 'getimagesizebyurl' function. This is due to insufficient validation of user-supplied URLs when determining image dimensions for gallery items...

5.4CVSS5.3AI score0.00233EPSS
Exploits0References8
Vulnrichment
Vulnrichment
added 2025/11/19 5:45 a.m.8 views

CVE-2025-12359 Responsive Lightbox & Gallery <= 2.5.3 - Authenticated (Author+) Server-Side Request Forgery

The Responsive Lightbox & Gallery plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.5.3 via the 'getimagesizebyurl' function. This is due to insufficient validation of user-supplied URLs when determining image dimensions for gallery items...

5.4CVSS5.3AI score0.00233EPSS
Exploits0References7
CVE
CVE
added 2025/11/18 9:27 a.m.23 views

CVE-2025-12457

CVE-2025-12457 concerns the WordPress plugin Enable SVG, WebP, and ICO Upload. The Wordfence vulnerability entry confirms a Stored Cross-Site Scripting (XSS) flaw via SVG file uploads in all versions up to 1.1.2, exploitable by an authenticated attacker with Author-level access or higher to injec...

6.4CVSS4.7AI score0.00217EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/18 9:27 a.m.6 views

CVE-2025-13069 Enable SVG, WebP, and ICO Upload <= 1.1.3 - Authenticated (Author+) Arbitrary File Upload via ICO Upload Bypass

The Enable SVG, WebP, and ICO Upload plugin for WordPress is vulnerable to arbitrary file upload in all versions up to, and including, 1.1.3. This is due to insufficient file type validation detecting ICO files, allowing double extension files with the appropriate magic bytes to bypass sanitizati...

8.8CVSS6.5AI score0.00634EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/18 6:43 a.m.10 views

CVE-2025-12524 Post Type Switcher <= 4.0.0 - Insecure Direct Object Reference to Authenticated (Author+) Post Type Change

The Post Type Switcher plugin for WordPress is vulnerable to Insecure Direct Object Reference in versions up to, and including, 4.0.0 due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Author-level access and above, to modify the post type...

5.4CVSS0.00279EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/11/15 5:45 a.m.13 views

CVE-2025-12494 Image Gallery – Photo Grid & Video Gallery <= 2.12.28 - Improper Authorization to Authenticated (Author+) Arbitrary Image File Move

The Image Gallery – Photo Grid & Video Gallery plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the ajaximportfile function in all versions up to, and including, 2.12.28. This makes it possible for authenticated attackers, with author-level...

4.3CVSS0.00237EPSS
Exploits0References7
CVE
CVE
added 2025/11/13 11:29 a.m.15 views

CVE-2025-12377

CVE-2025-12377 affects the Gallery Plugin for WordPress – Envira Photo Gallery (

4.3CVSS4.9AI score0.00311EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/11/13 3:27 a.m.11 views

CVE-2025-12366 Page Builder: Pagelayer – Drag and Drop website builder <= 2.0.5 - Authenticated (Author+) Insecure Direct Object Reference

The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.0.5 via the pagelayerreplacepage function due to missing validation on a user controlled key. This makes it possible for...

4.3CVSS0.00232EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/11/13 3:27 a.m.5 views

CVE-2025-12366 Page Builder: Pagelayer – Drag and Drop website builder <= 2.0.5 - Authenticated (Author+) Insecure Direct Object Reference

The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.0.5 via the pagelayerreplacepage function due to missing validation on a user controlled key. This makes it possible for...

4.3CVSS5.1AI score0.00232EPSS
Exploits0References3
NVD
NVD
added 2025/11/12 5:15 a.m.13 views

CVE-2025-12833

The GeoDirectory – WP Business Directory Plugin and Classified Listings Directory plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.8.139 via the 'postattachmentupload' function due to missing validation on a user controlled key. This...

4.3CVSS0.00221EPSS
Exploits0References4
Rows per page
Query Builder