33 matches found
CVE-2025-34434
AVideo versions prior to 20.1 with the ImageGallery plugin enabled is vulnerable to unauthenticated file upload and deletion. Plugin endpoints responsible for managing gallery images fail to enforce authentication checks and do not validate ownership, allowing unauthenticated attackers to upload ...
EUVD-2025-169287
The Gallery Plugin for WordPress – Envira Photo Gallery plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on several functions in all versions up to, and including, 1.12.0. This makes it possible for authenticated attackers, with Author-leve...
PT-2025-46818
Name of the Vulnerable Software and Affected Versions Envira Photo Gallery versions up to and including 1.12.0 Description The Envira Photo Gallery plugin for WordPress is susceptible to unauthorized data modification because of a missing capability check in several functions. Authenticated...
EUVD-2019-11583
Malware in sbrugna...
EUVD-2022-45098
Malicious code in bioql PyPI...
CVE-2025-29093
File Upload vulnerability in Motivian Content Mangment System v.41.0.0 allows a remote attacker to execute arbitrary code via the Content/Gallery/Images component...
CVE-2016-11018
An issue was discovered in the Huge-IT gallery-images plugin before 1.9.0 for WordPress. The headers Client-Ip and X-Forwarded-For are prone to unauthenticated SQL injection. The affected file is gallery-images.php. The affected function is hugeitimagegalleryajaxcallback...
CVE-2019-25149
The Gallery Images Ape plugin for WordPress is vulnerable to Arbitrary Plugin Deactivation in versions up to, and including, 2.0.6. This allows authenticated attackers with any capability level to deactivate any plugin on the site, including plugins necessary to site functionality or security...
CVE-2025-22317
CVE-2025-22317 is a Reflected XSS in the WordPress plugin Gallery Images Ape (gallery-images-ape) affecting versions up to and including 2.2.8. The issue stems from improper neutralization of input during Web Page Generation, enabling reflected script execution. Documented impact is Cross-Site Sc...
WordPress plugin Photo Gallery, Images, Slider in Rbs Image Gallery 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability in the WordPress plug...
CVE-2022-41995
Missing Authorization vulnerability in Galleryape Gallery Images Ape allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Gallery Images Ape: from n/a through 2.2.8...
CVE-2022-41995 WordPress Photo Gallery – Image Gallery by Ape Plugin <= 2.2.8 is vulnerable to Broken Access Control
Missing Authorization vulnerability in Galleryape Gallery Images Ape allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Gallery Images Ape: from n/a through 2.2.8...
WordPress plugin Gallery Images Ape 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exist...
PT-2025-1366 · Unknown · Gallery Images Ape
Name of the Vulnerable Software and Affected Versions: Gallery Images Ape versions 2.2.8 and earlier Description: The issue is related to a Missing Authorization vulnerability in Galleryape Gallery Images Ape, which allows exploiting incorrectly configured access control security levels...
CVE-2019-25149
The Gallery Images Ape plugin for WordPress is vulnerable to Arbitrary Plugin Deactivation in versions up to, and including, 2.0.6. This allows authenticated attackers with any capability level to deactivate any plugin on the site, including plugins necessary to site functionality or security...
CVE-2019-25149
CVE-2019-25149 affects the Gallery Images Ape plugin for WordPress. Affected: WordPress plugin Gallery Images Ape, vulnerable in versions up to and including 2.0.6. Root cause: authenticated users with any capability can deactivate any plugin on the site, potentially disabling critical functional...
WordPress Plugin Gallery Images Ape 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. WordPress Plugin Gallery Images Ape...
CVE-2022-41785
Auth. contributor+ Stored Cross-Site Scripting vulnerability in Galleryape Gallery Images Ape plugin = 2.2.8 versions...
CVE-2022-41785
Auth. contributor+ Stored Cross-Site Scripting vulnerability in Galleryape Gallery Images Ape plugin = 2.2.8 versions...
CVE-2022-41785
CVE-2022-41785 concerns a Stored Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Gallery Images Ape (Galleryape Gallery Images Ape) , affecting versions