30 matches found
CVE-2026-39510 WordPress Image Photo Gallery Final Tiles Grid plugin <= 3.6.11 - Insecure Direct Object References (IDOR) vulnerability
Authorization Bypass Through User-Controlled Key vulnerability in WP Chill Image Photo Gallery Final Tiles Grid final-tiles-grid-gallery-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Image Photo Gallery Final Tiles Grid: from n/a through = 3.6.11...
CVE-2026-25375
Missing Authorization vulnerability in WP Chill Image Photo Gallery Final Tiles Grid final-tiles-grid-gallery-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Image Photo Gallery Final Tiles Grid: from n/a through = 3.6.10...
EUVD-2023-46151
Malicious code in bioql PyPI...
CVE-2024-1664
The Responsive Gallery Grid WordPress plugin before 2.3.11 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2024-4091
The Responsive Gallery Grid WordPress plugin before 2.3.15 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...
CVE-2024-4091
The Responsive Gallery Grid WordPress plugin before 2.3.15 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...
CVE-2024-4091 Responsive Gallery Grid < 2.3.15 - Admin+ Stored XSS
The Responsive Gallery Grid WordPress plugin before 2.3.15 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...
CVE-2024-4091 Responsive Gallery Grid < 2.3.15 - Admin+ Stored XSS
The Responsive Gallery Grid WordPress plugin before 2.3.15 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...
WordPress plugin Responsive Gallery Grid 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in th...
Wordpress Responsive Gallery Grid plugin < 2.3.11 - Admin+ Stored XSS vulnerability
Admin+ Stored XSS vulnerability discovered by WPScan in WordPress Plugin Responsive Gallery Grid versions 2.3.11...
WordPress Responsive Gallery Grid Plugin < 2.3.11 is vulnerable to Cross Site Scripting (XSS)
Software Responsive Gallery Grid Type Plugin Vulnerable versions 2.3.11 Fixed in 2.3.11 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1664 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 64e1e4491d20 Credits WPScan Required...
CVE-2024-1664
The Responsive Gallery Grid WordPress plugin before 2.3.11 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2024-1664 Responsive Gallery Grid < 2.3.11 - Admin+ Stored XSS
The Responsive Gallery Grid WordPress plugin before 2.3.11 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
CVE-2024-1664 Responsive Gallery Grid < 2.3.11 - Admin+ Stored XSS
The Responsive Gallery Grid WordPress plugin before 2.3.11 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
WordPress Plugin Responsive Gallery Grid 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. WordPress plugin is an application plugin. A security vulnerability exists in...
PT-2024-18209 · WordPress · Responsive Gallery Grid
Name of the Vulnerable Software and Affected Versions: Responsive Gallery Grid WordPress plugin versions prior to 2.3.11 Description: The issue allows high privilege users, such as admins, to perform Stored Cross-Site Scripting attacks, even when the unfiltered html capability is disallowed, for...
Responsive Gallery Grid <= 2.3.10 - Settings Update via CSRF
Description The plugin does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack...
CVE-2023-41659
Cross-Site Request Forgery CSRF vulnerability in Jules Colle, BDWM Responsive Gallery Grid plugin = 2.3.10 versions...
CVE-2023-41659
Cross-Site Request Forgery CSRF vulnerability in Jules Colle, BDWM Responsive Gallery Grid plugin = 2.3.10 versions...
Cross site request forgery (csrf)
Cross-Site Request Forgery CSRF vulnerability in Jules Colle, BDWM Responsive Gallery Grid plugin = 2.3.10 versions...