CVE-2022-0169

The Photo Gallery by 10Web WordPress plugin before 1.6.0 does not validate and escape the bwgtagidbwgthumbnails0 parameter before using it in a SQL statement via the bwgfrontenddata AJAX action available to unauthenticated and authenticated users, leading to an unauthenticated SQL injection...

CVE-2024-11501 Gallery <= 1.3 - Authenticated (Contributor+) PHP Object Injection

The Gallery plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.3 via deserialization of untrusted input from wdgallery$id parameter. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject a PHP Object...

PT-2023-10288 · WordPress · Video Playlist/Gallery Plugin

Name of the Vulnerable Software and Affected Versions: Video Playlist and Gallery Plugin versions up to 1.136 Description: A problem was found in the Video Playlist and Gallery Plugin. It affects some unknown functionality of the file wp-media-cincopa.php. The issue leads to cross-site request...