Lucene search
+L

7 matches found

Cvelist
Cvelist
added 2024/06/07 9:33 a.m.45 views

CVE-2024-5481 Photo Gallery by 10Web – Mobile-Friendly Image Gallery <= 1.8.23 - Authenticated (Contributor+) Path Traversal via esc_dir Function

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.8.23 via the escdir function. This makes it possible for authenticated attackers to cut and paste copy the contents of arbitrary files on the...

6.8CVSS0.00727EPSS
Exploits0References6
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.5 views

WordPress 插件跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress Plugin is an open source application plugin for WordPress. 10Web â€" A cross-site scripting vulnerabilit...

6.1CVSS5.9AI score0.00827EPSS
Exploits2References1
CNNVD
CNNVD
added 2021/06/01 12:0 a.m.5 views

WordPress 插件 跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress Plugin is a WordPress open source application plugin . A cross-site scripting vulnerability exists in the...

4.8CVSS5.3AI score0.01131EPSS
Exploits2References1
CNVD
CNVD
added 2021/05/20 12:0 a.m.8 views

WordPress plugin cross-site scripting vulnerability (CNVD-2021-36529)

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress Plugin is a WordPress open source application plugin . A cross-site scripting vulnerability exists in the...

6.1CVSS5.8AI score0.1445EPSS
Exploits2References1
CNNVD
CNNVD
added 2021/05/14 12:0 a.m.7 views

WordPress plugin 跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress Plugin is a WordPress open source application plugin . A cross-site scripting vulnerability exists in the...

6.1CVSS5.1AI score0.1445EPSS
Exploits2References3
Packet Storm
Packet Storm
added 2021/04/19 12:0 a.m.219 views

WordPress Photo Gallery 1.5.69 Cross Site Scripting

Researcher Name: ThuraMoeMyint Twitter: https://twitter.com/mgthuramoemyint Vendor Url: https://wordpress.org/plugins/photo-gallery/ "Photo Gallery by 10Web / Mobile-Friendly Image Gallery" photo-gallery Multiple RXSS The parameter bwgalbumbreadcrumb0 is able to inject malicious javascript code...

Exploits0
0day.today
0day.today
added 2021/04/19 12:0 a.m.23 views

WordPress Photo Gallery 1.5.69 Cross Site Scripting Vulnerability

WordPress Photo Gallery plugin versions 1.5.69 and below suffer from multiple reflective cross site scripting vulnerabilities. WordPress Photo Gallery 1.5.69 Cross Site Scripting Vulnerability Researcher Name: ThuraMoeMyint Twitter: https://twitter.com/mgthuramoemyint Vendor Url:...

6.8AI score
Exploits0
Rows per page
Query Builder