2 matches found
CVE-2025-13603
The CVE concerns WP Audio Gallery for WordPress (
PT-2026-20602
The WP AUDIO GALLERY plugin for WordPress is vulnerable to Unauthorized Arbitrary File Read in all versions up to, and including, 2.0. This is due to insufficient capability checks and lack of nonce verification on the "wpag htaccess callback" function This makes it possible for authenticated...