WordPress Gallery PhotoBlocks plugin <= 1.3.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by johska in WordPress Plugin Gallery PhotoBlocks versions = 1.3.2...

CVE-2026-24389

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Chill Gallery PhotoBlocks photoblocks-grid-gallery allows DOM-Based XSS.This issue affects Gallery PhotoBlocks: from n/a through = 1.3.2...

CVE-2026-24389 WordPress Gallery PhotoBlocks plugin <= 1.3.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Chill Gallery PhotoBlocks photoblocks-grid-gallery allows DOM-Based XSS.This issue affects Gallery PhotoBlocks: from n/a through = 1.3.2...

CVE-2026-24389

CVE-2026-24389 concerns the WordPress Gallery PhotoBlocks plugin (photoblocks-grid-gallery). Public sources confirm a Cross-Site Scripting (DOM-based) vulnerability in Gallery PhotoBlocks versions up to 1.3.2, arising from improper input neutralization during web page generation. Exploitation cou...

WordPress plugin Gallery PhotoBlocks has a cross-site scripting vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. The...

CVE-2025-58610

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Chill Gallery PhotoBlocks photoblocks-grid-gallery allows Stored XSS.This issue affects Gallery PhotoBlocks: from n/a through = 1.3.1...

WordPress Gallery PhotoBlocks Plugin <= 1.3.1 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by theviper17 in WordPress Plugin Gallery PhotoBlocks versions = 1.3.1...

CVE-2025-58610

CVE-2025-58610 affects Gallery PhotoBlocks (WordPress plugin) with Stored XSS due to improper input neutralization during web page generation. Affected versions areGallery PhotoBlocks 1.3.1 and earlier (n/a–1.3.1). The vulnerability is confirmed in multiple sources (NVD patchnotes and Patchstack ...

CVE-2025-58610 WordPress Gallery PhotoBlocks Plugin <= 1.3.1 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in WP Chill Gallery PhotoBlocks photoblocks-grid-gallery allows Stored XSS.This issue affects Gallery PhotoBlocks: from n/a through = 1.3.1...

PT-2025-35744

Name of the Vulnerable Software and Affected Versions: WP Chill Gallery PhotoBlocks versions through 1.3.1 Description: The software contains a cross-site scripting XSS flaw due to improper neutralization of input during web page generation. This allows for stored XSS attacks. Recommendations:...

WordPress plugin Gallery PhotoBlocks 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

WordPress Gallery PhotoBlocks Plugin < 1.3.0 is vulnerable to Cross Site Scripting (XSS)

Software Gallery PhotoBlocks Type Plugin Vulnerable versions 1.3.0 Fixed in 1.3.0 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID cc12359f2fd6 Credits Rafie Muhammad Patchstack...

CVE-2022-37407

Multiple Authenticated Stored Cross-Site Scripting XSS vulnerabilities in WPChill Gallery PhotoBlocks plugin = 1.2.6 at WordPress...

CVE-2022-37407

Multiple Authenticated Stored Cross-Site Scripting XSS vulnerabilities in WPChill Gallery PhotoBlocks plugin = 1.2.6 at WordPress...

Cross site scripting

Multiple Authenticated Stored Cross-Site Scripting XSS vulnerabilities in WPChill Gallery PhotoBlocks plugin = 1.2.6 at WordPress...

WordPress plugin Gallery PhotoBlocks 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

CVE-2022-36292

Cross-Site Request Forgery CSRF vulnerabilities in WPChill Gallery PhotoBlocks plugin = 1.2.6 at WordPress...

CVE-2022-36292 WordPress Gallery PhotoBlocks plugin <= 1.2.6 - Cross-Site Request Forgery (CSRF) vulnerabilities

Cross-Site Request Forgery CSRF vulnerabilities in WPChill Gallery PhotoBlocks plugin = 1.2.6 at WordPress...

CVE-2022-36292 WordPress Gallery PhotoBlocks plugin <= 1.2.6 - Cross-Site Request Forgery (CSRF) vulnerabilities

Cross-Site Request Forgery CSRF vulnerabilities in WPChill Gallery PhotoBlocks plugin = 1.2.6 at WordPress...

PT-2022-23293 · Wpchill · Wpchill Gallery Photoblocks

Name of the Vulnerable Software and Affected Versions: WPChill Gallery PhotoBlocks plugin versions 1.2.6 and earlier Description: The issue is related to Cross-Site Request Forgery CSRF vulnerabilities. This means an attacker could potentially trick a user into performing unintended actions on a...