6 matches found
CVE-2025-23951
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DIVENGINE Gallery: Hybrid – Advanced Visual Gallery hybrid-gallery allows Stored XSS.This issue affects Gallery: Hybrid – Advanced Visual Gallery: from n/a through = 1.4.0.2...
EUVD-2025-3564
Malicious code in bioql PyPI...
CVE-2025-23951
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DIVENGINE Gallery: Hybrid – Advanced Visual Gallery hybrid-gallery allows Stored XSS.This issue affects Gallery: Hybrid – Advanced Visual Gallery: from n/a through = 1.4.0.2...
CVE-2025-23951
CVE-2025-23951 is a stored XSS in Gallery: Hybrid – Advanced Visual Gallery (DivEngine Gallery) that allows injection during web page generation. Affected version range: up through 1.4.0.2 (vendor/date n/a). The issue is caused by improper neutralization of user input, enabling attackers to store...
CVE-2025-23951 WordPress Gallery: Hybrid – Advanced Visual Gallery plugin <= 1.4.0.2 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in DIVENGINE Gallery: Hybrid – Advanced Visual Gallery hybrid-gallery allows Stored XSS.This issue affects Gallery: Hybrid – Advanced Visual Gallery: from n/a through = 1.4.0.2...
PT-2025-5228 · Unknown · Divengine Gallery
Name of the Vulnerable Software and Affected Versions: DivEngine Gallery: Hybrid – Advanced Visual Gallery versions 1.4.0.2 and earlier Description: The issue is related to improper neutralization of input during web page generation, which allows stored Cross-site Scripting XSS. This means an...