Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:31 a.m.6 views

CVE-2019-14798

The 10Web Photo Gallery plugin before 1.5.25 for WordPress has Authenticated Local File Inclusion via directory traversal in the wp-admin/admin-ajax.php?action=shortcodebwg tagtext parameter...

4.9CVSS7.1AI score0.0443EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2019/08/15 12:0 a.m.33 views

WordPress Photo Gallery Plugin < 1.5.25 LFI Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description scriptoid"1.3.6.1.4.1.25623.1.0.112629";...

4.9CVSS5.2AI score0.0443EPSS
Exploits1References2
NVD
NVD
added 2019/08/09 2:15 p.m.29 views

CVE-2019-14798

The 10Web Photo Gallery plugin before 1.5.25 for WordPress has Authenticated Local File Inclusion via directory traversal in the wp-admin/admin-ajax.php?action=shortcodebwg tagtext parameter...

4.9CVSS5.3AI score0.0443EPSS
Exploits1References3
OSV
OSV
added 2019/08/09 2:15 p.m.3 views

CVE-2019-14798

The 10Web Photo Gallery plugin before 1.5.25 for WordPress has Authenticated Local File Inclusion via directory traversal in the wp-admin/admin-ajax.php?action=shortcodebwg tagtext parameter...

4.9CVSS5.8AI score0.0443EPSS
Exploits1References3
CVE
CVE
added 2019/08/09 1:29 p.m.86 views

CVE-2019-14798

The CVE-2019-14798 case concerns the WordPress plugin Photo Gallery by 10Web (before 1.5.25). Affected component: wp-admin/admin-ajax.php handling of action=shortcode_bwg with the tagtext parameter. Root cause: Authenticated Local File Inclusion via directory traversal, enabling access to files o...

4.9CVSS5.2AI score0.0443EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder