Lucene search
+L

14 matches found

nvd
nvd
added 2026/03/25 5:17 p.m.5 views

CVE-2026-32524

Unrestricted Upload of File with Dangerous Type vulnerability in Jordy Meow Photo Engine wplr-sync allows Upload a Web Shell to a Web Server.This issue affects Photo Engine: from n/a through = 6.4.9...

9.1CVSS0.00332EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-42313

Malicious code in bioql PyPI...

5.4CVSS6.7AI score0.00323EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-40224

Malicious code in bioql PyPI...

8.8CVSS6.5AI score0.0053EPSS
Exploits0References1
cve
cve
added 2025/08/14 10:34 a.m.13 views

CVE-2025-54672

CVE-2025-54672 is a CSRF vulnerability in the WordPress plugin Photo Engine (Jordy Meow) affecting versions up to and including 6.4.3. The initial entry lists a CVSSv3.1 base score of 4.3 (Medium) with network access and user interaction required. Connected sources corroborate the issue as a Cros...

4.3CVSS5.9AI score0.00144EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 9:47 a.m.12 views

CVE-2024-43332

Missing Authorization vulnerability in Jordy Meow Photo Engine allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Photo Engine: from n/a through 6.4.0...

8.8CVSS6.9AI score0.0053EPSS
Exploits0
redhatcve
redhatcve
added 2025/05/23 7:27 a.m.6 views

CVE-2024-39660

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Jordy Meow Photo Engine allows Stored XSS.This issue affects Photo Engine: from n/a through 6.3.1...

5.9CVSS6.7AI score0.00259EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 6:5 a.m.6 views

CVE-2023-38513

Authorization Bypass Through User-Controlled Key vulnerability in Jordy Meow Photo Engine Media Organizer & Lightroom.This issue affects Photo Engine Media Organizer & Lightroom: from n/a through 6.2.5...

5.4CVSS6.6AI score0.00323EPSS
Exploits0References1
nvd
nvd
added 2024/11/01 3:15 p.m.20 views

CVE-2024-43332

Missing Authorization vulnerability in Jordy Meow Photo Engine allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Photo Engine: from n/a through 6.4.0...

8.8CVSS0.0053EPSS
Exploits0References1
cve
cve
added 2024/11/01 2:17 p.m.53 views

CVE-2024-43332

CVE-2024-43332 is a Missing Authorization vulnerability in the WordPress Photo Engine (WPLR-Sync) plugin, affecting Photo Engine versions n/a through 6.4.0. The issue stems from incorrectly configured access control, enabling unauthorized access to protected resources. Public references note High...

8.8CVSS5.7AI score0.0053EPSS
Exploits0References1Affected Software1
nvd
nvd
added 2024/08/01 10:15 p.m.19 views

CVE-2024-39660

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Jordy Meow Photo Engine allows Stored XSS.This issue affects Photo Engine: from n/a through 6.3.1...

5.9CVSS0.00259EPSS
Exploits0References1
cve
cve
added 2024/08/01 9:43 p.m.46 views

CVE-2024-39660

CVE-2024-39660 is a Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Photo Engine (Media Organizer & Lightroom) by Jordy Meow. The issue affects Photo Engine versions

5.9CVSS5.8AI score0.00259EPSS
Exploits0References1
nvd
nvd
added 2023/12/20 2:15 p.m.20 views

CVE-2023-38513

Authorization Bypass Through User-Controlled Key vulnerability in Jordy Meow Photo Engine Media Organizer & Lightroom.This issue affects Photo Engine Media Organizer & Lightroom: from n/a through 6.2.5...

5.4CVSS0.00323EPSS
Exploits0References1
prion
prion
added 2023/12/20 2:15 p.m.28 views

Authorization

Authorization Bypass Through User-Controlled Key vulnerability in Jordy Meow Photo Engine Media Organizer & Lightroom.This issue affects Photo Engine Media Organizer & Lightroom: from n/a through 6.2.5...

5.5CVSS7.2AI score0.00323EPSS
Exploits0References1Affected Software1
cve
cve
added 2023/12/20 1:52 p.m.57 views

CVE-2023-38513

CVE-2023-38513 affects WordPress Photo Engine (Media Organizer & Lightroom) plugin, specifically Jordy Meow Photo Engine via the Photo Engine/WPLR‑Sync component. It is an Authorization Bypass through a User‑Controlled Key (IDOR) vulnerability that can bypass access controls. Affected range: n/a ...

5.4CVSS6.6AI score0.00323EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder