Lucene search
K

48 matches found

RedhatCVE
RedhatCVE
added 2026/01/23 9:16 p.m.4 views

CVE-2025-49049

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ZoomIt DZS Video Gallery dzs-videogallery allows SQL Injection.This issue affects DZS Video Gallery: from n/a through = 12.39...

8.5CVSS5.9AI score0.00386EPSS
Exploits0References1
NVD
NVD
added 2026/01/22 5:15 p.m.6 views

CVE-2025-49049

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ZoomIt DZS Video Gallery dzs-videogallery allows SQL Injection.This issue affects DZS Video Gallery: from n/a through = 12.39...

8.5CVSS0.00386EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/22 4:51 p.m.1 views

CVE-2025-49049 WordPress DZS Video Gallery plugin <= 12.39 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ZoomIt DZS Video Gallery dzs-videogallery allows SQL Injection.This issue affects DZS Video Gallery: from n/a through = 12.39...

8.5CVSS5.9AI score0.00386EPSS
Exploits0References1
CVE
CVE
added 2026/01/22 4:51 p.m.17 views

CVE-2025-49049

CVE-2025-49049 affects WordPress DZS Video Gallery plugin (dzs-videogallery) up to version 12.37. The vulnerability is an SQL Injection due to improper neutralization of input in the plugin. Multiple sources confirm the issue and affected range, but none in the connected docs provide a patch/fix;...

8.5CVSS5.9AI score0.00386EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/22 4:51 p.m.21 views

CVE-2025-49049 WordPress DZS Video Gallery plugin <= 12.39 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in ZoomIt DZS Video Gallery dzs-videogallery allows SQL Injection.This issue affects DZS Video Gallery: from n/a through = 12.39...

8.5CVSS0.00386EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.8 views

PT-2026-3970

Name of the Vulnerable Software and Affected Versions ZoomIt DZS Video Gallery versions through 12.37 Description A flaw exists in ZoomIt DZS Video Gallery that allows for SQL Injection. This issue is due to improper neutralization of special elements used in an SQL command. The API endpoint is n...

5.5AI score0.00386EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/22 12:0 a.m.6 views

WordPress plugin DZS Video Gallery has a SQL injection vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

8.5CVSS5.9AI score0.00386EPSS
Exploits0References1
Patchstack
Patchstack
added 2026/01/12 5:32 a.m.7 views

WordPress DZS Video Gallery plugin <= 12.39 - SQL Injection vulnerability

SQL Injection vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Plugin DZS Video Gallery versions = 12.39...

8.8CVSS5.9AI score0.00386EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/09 8:49 a.m.7 views

CVE-2025-47552

Deserialization of Untrusted Data vulnerability in Digital zoom studio DZS Video Gallery allows Object Injection.This issue affects DZS Video Gallery: from n/a through 12.37...

9.8CVSS5.2AI score0.0032EPSS
Exploits0References1
NVD
NVD
added 2026/01/07 1:15 p.m.6 views

CVE-2025-47552

Deserialization of Untrusted Data vulnerability in Digital zoom studio DZS Video Gallery allows Object Injection.This issue affects DZS Video Gallery: from n/a through 12.37...

9.8CVSS0.0032EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/07 12:38 p.m.4 views

CVE-2025-47552

Deserialization of Untrusted Data vulnerability in Digital zoom studio DZS Video Gallery allows Object Injection.This issue affects DZS Video Gallery: from n/a through 12.37...

9.8CVSS5.2AI score0.0032EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/07 12:38 p.m.6 views

CVE-2025-47552 WordPress DZS Video Gallery plugin <= 12.37 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in Digital zoom studio DZS Video Gallery allows Object Injection.This issue affects DZS Video Gallery: from n/a through 12.37...

9.8CVSS6.6AI score0.0032EPSS
Exploits0References1
CVE
CVE
added 2026/01/07 12:38 p.m.36 views

CVE-2025-47552

CVE-2025-47552 concerns the WordPress plugin "DZS Video Gallery" (versions &lt;= 12.37). The issue is a deserialization of untrusted data leading to PHP Object Injection, which under the reported details could enable remote code execution. Public documentation body here confirms the vulnerability...

9.8CVSS5.2AI score0.0032EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/07 12:38 p.m.44 views

CVE-2025-47552 WordPress DZS Video Gallery plugin <= 12.37 - PHP Object Injection Vulnerability

Deserialization of Untrusted Data vulnerability in Digital zoom studio DZS Video Gallery allows Object Injection.This issue affects DZS Video Gallery: from n/a through 12.37...

9.8CVSS0.0032EPSS
Exploits0References1
CVE
CVE
added 2026/01/07 12:6 p.m.13 views

CVE-2025-32300

CVE-2025-32300 : Reflected XSS in WordPress plugin DZS Video Gallery (versions

7.1CVSS5.2AI score0.0018EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/07 12:6 p.m.27 views

CVE-2025-32300 WordPress DZS Video Gallery plugin <= 12.25 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Digital zoom studio DZS Video Gallery allows Reflected XSS.This issue affects DZS Video Gallery: from n/a through 12.25...

7.1CVSS0.0018EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/07 12:6 p.m.5 views

CVE-2025-32300 WordPress DZS Video Gallery plugin <= 12.25 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Digital zoom studio DZS Video Gallery allows Reflected XSS.This issue affects DZS Video Gallery: from n/a through 12.25...

7.1CVSS5.2AI score0.0018EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/07 12:0 a.m.6 views

WordPress plugin和WordPress 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A code issue...

9.8CVSS5.9AI score0.0032EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/01/07 12:0 a.m.5 views

WordPress和WordPress plugin 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A cross-site scripti...

7.1CVSS5.6AI score0.0018EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/07 12:0 a.m.9 views

PT-2026-1654

Name of the Vulnerable Software and Affected Versions DZS Video Gallery versions through 12.37 Description The software contains a flaw due to deserialization of untrusted data, which allows for object injection. This issue presents a potential for remote code execution. The vulnerable component...

9.8CVSS7.7AI score0.0032EPSS
Exploits0References5
Rows per page
Query Builder