Lucene search
+L

5 matches found

NVD
NVD
added 2023/06/07 2:15 p.m.38 views

CVE-2021-46889

The 10Web Photo Gallery plugin through 1.5.69 for WordPress allows XSS via themeid for bwgfrontenddata. NOTE: other parameters are covered by CVE-2021-24291, CVE-2021-25041, and CVE-2021-31693...

6.1CVSS6AI score0.00575EPSS
Exploits1References1
OSV
OSV
added 2023/06/07 2:15 p.m.8 views

CVE-2021-46889

The 10Web Photo Gallery plugin through 1.5.69 for WordPress allows XSS via themeid for bwgfrontenddata. NOTE: other parameters are covered by CVE-2021-24291, CVE-2021-25041, and CVE-2021-31693...

6.1CVSS5.8AI score0.00575EPSS
Exploits1References1
CVE
CVE
added 2023/06/07 12:0 a.m.95 views

CVE-2021-46889

The CVE-2021-46889 entry concerns the WordPress Photo Gallery by 10Web plugin prior to version 1.5.69, which is vulnerable to cross-site scripting via the theme_id parameter in the bwg_frontend_data AJAX action. The linked technical detail (CVE-2021-24291) confirms multiple reflected XSS vectors ...

6.1CVSS5.9AI score0.00575EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2022/11/29 9:15 p.m.30 views

CVE-2021-31693

The 10Web Photo Gallery plugin through 1.5.68 for WordPress allows XSS via albumgalleryid0, bwgalbumsearch0, and type0 for bwgfrontenddata. NOTE: other parameters are covered by CVE-2021-24291, CVE-2021-25041, and CVE-2021-46889. NOTE: VMware information, previously connected to this CVE ID becau...

6.1CVSS0.00409EPSS
Exploits0References1
CVE
CVE
added 2022/11/29 12:0 a.m.129 views

CVE-2021-31693

The WordPress plugin WordPress Photo Gallery by 10Web (before version 1.5.69) is affected by CVE-2021-31693 and related CVEs. Concrete details from connected documents show multiple reflected cross-site scripting vulnerabilities via GET parameters gallery_id, tag, album_id, and theme_id passed to...

6.1CVSS5.6AI score0.00409EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder