32 matches found
EUVD-2025-21851
Malicious code in bioql PyPI...
EUVD-2022-48269
Malicious code in bioql PyPI...
EUVD-2025-11664
Malicious code in bioql PyPI...
EUVD-2025-10628
Malicious code in bioql PyPI...
CVE-2025-6726 Block Editor Gallery Slider <= 1.1.1 - Missing Authorization to Authenticated (Subscriber+) Limited Post Meta Update
The Block Editor Gallery Slider plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the classicgalleryslideroptions function in all versions up to, and including, 1.1.1. This makes it possible for authenticated attackers, with...
CVE-2025-6726
CVE-2025-6726 relates to the Block Editor Gallery Slider WordPress plugin. The Wordfence/NVD entry states a missing capability check in classic_gallery_slider_options() affects all versions up to and including 1.1.1, enabling authenticated users with Subscriber-level access or higher to modify li...
CVE-2025-6726 Block Editor Gallery Slider <= 1.1.1 - Missing Authorization to Authenticated (Subscriber+) Limited Post Meta Update
The Block Editor Gallery Slider plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the classicgalleryslideroptions function in all versions up to, and including, 1.1.1. This makes it possible for authenticated attackers, with...
WordPress plugin Block Editor Gallery Slider security vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...
PT-2025-30003 · WordPress · Block Editor Gallery Slider
Name of the Vulnerable Software and Affected Versions: Block Editor Gallery Slider plugin for WordPress versions up to and including 1.1.1 Description: The Block Editor Gallery Slider plugin for WordPress is susceptible to unauthorized data modification. A missing capability check within the...
CVE-2022-45372
Cross-Site Request Forgery CSRF vulnerability in Codeixer Product Gallery Slider for WooCommerce plugin = 2.2.8 versions...
CVE-2024-13384
The Photo Gallery, Images, Slider in Rbs Image Gallery WordPress plugin before 3.2.24 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for...
WordPress plugin Photo Gallery, Images, Slider in Rbs Image Gallery 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the WordPre...
CVE-2025-32527
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pey22 T Gallery Slider tp-gallery-slider allows Stored XSS.This issue affects T Gallery Slider: from n/a through = 1.2...
CVE-2025-32527
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pey22 T&P Gallery Slider tp-gallery-slider allows Stored XSS.This issue affects T&P Gallery Slider: from n/a through = 1.2...
CVE-2025-32527
CVE-2025-32527 is a stored XSS vulnerability in the WordPress plugin T&P Gallery Slider (versions up to 1.2). The root cause is improper neutralization of input during web page generation, enabling stored cross-site scripting. The CVSS v3.1 base score is 7.1 (HIGH), with attack vector: NETWORK, c...
CVE-2025-32527 WordPress T&P Gallery Slider plugin <= 1.2 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pey22 T&P Gallery Slider tp-gallery-slider allows Stored XSS.This issue affects T&P Gallery Slider: from n/a through = 1.2...
CVE-2025-32527 WordPress T&P Gallery Slider plugin <= 1.2 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in pey22 T&P Gallery Slider tp-gallery-slider allows Stored XSS.This issue affects T&P Gallery Slider: from n/a through = 1.2...
PT-2025-17099 · Unknown · T&P Gallery Slider
Name of the Vulnerable Software and Affected Versions: T&P Gallery Slider versions n/a through 1.2 Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as 'Cross-site Scripting', which allows Stored XSS in the T&P Gallery Slider...
WordPress plugin T&P Gallery Slider 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...
WordPress T&P Gallery Slider plugin <= 1.2 - Stored Cross Site Scripting (XSS) vulnerability
Stored Cross Site Scripting XSS vulnerability discovered by Mika in WordPress Plugin T&P Gallery Slider versions = 1.2...