Lucene search
K

5 matches found

CVE
CVE
added 2026/05/28 7:43 a.m.30 views

CVE-2026-7048

The CVE-2026-7048 entry concerns the WordPress plugin Photo Gallery by 10Web – Mobile-Friendly Image Gallery. A time-based blind SQL Injection exists via the order_by parameter in all versions up to and including 1.8.40, caused by insufficient escaping and incomplete SQL query preparation. Authen...

6.5CVSS5.9AI score0.00504EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2023-38119

Malicious code in bioql PyPI...

4.3CVSS6.5AI score0.00498EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/10/09 6:0 a.m.12 views

CVE-2024-5968 Photo Gallery by 10Web <= 1.8.27 - Admin+ Stored XSS

The Photo Gallery by 10Web WordPress plugin before 1.8.28 does not properly sanitise and escape some of its Gallery settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in...

5.7AI score0.0034EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/04/29 12:42 p.m.27 views

CVE-2024-33586 WordPress Photo Gallery by 10Web plugin <= 1.8.20 - Broken Access Control vulnerability

Missing Authorization vulnerability in Photo Gallery Team Photo Gallery by 10Web.This issue affects Photo Gallery by 10Web: from n/a through 1.8.20...

5.3CVSS5.6AI score0.00372EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/04/17 12:0 a.m.4 views

WordPress Plugin Photo Gallery by 10Web 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

4.9CVSS5.3AI score0.00783EPSS
Exploits2References2
Rows per page
Query Builder