5 matches found
CVE-2025-2269
The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘imageid’ parameter in all versions up to, and including, 1.8.34 due to insufficient input sanitization and output escaping. This makes it possible for...
CVE-2025-2269
creationtimestamp| type| source ---|---|--- 2025-04-11 23:51:24+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/11515 2025-04-12 01:43:28+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lmlft2kaqo2j 2025-04-12 04:59:35+00:00| seen|...
CVE-2025-2269 Photo Gallery by 10Web – Mobile-Friendly Image Gallery <= 1.8.34 Reflected Cross-Site Scripting via 'image_id' Parameter
The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘imageid’ parameter in all versions up to, and including, 1.8.34 due to insufficient input sanitization and output escaping. This makes it possible for...
CVE-2025-2269
The CVE CVE-2025-2269 affects the WordPress plugin Photo Gallery by 10Web – Mobile-Friendly Image Gallery and enables Reflected Cross-Site Scripting via the image_id parameter in all versions up to 1.8.34. The vulnerability arises from insufficient input sanitization/output escaping, allowing an ...
WordPress Photo Gallery by 10Web plugin <= 1.8.34 Reflected Cross-Site Scripting via 'image_id' Parameter vulnerability
WordPress Photo Gallery by 10Web plugin = 1.8.34 Reflected Cross-Site Scripting via 'imageid' Parameter vulnerability discovered by Ivan Kuzymchak in WordPress Plugin Photo Gallery by 10Web versions = 1.8.34...