13 matches found
EUVD-2025-14847
Malicious code in bioql PyPI...
EUVD-2025-8802
Malicious code in bioql PyPI...
PT-2025-38816
Name of the Vulnerable Software and Affected Versions GhozyLab Gallery Lightbox versions through 1.0.0.41 Description The software contains a flaw due to improper input handling during web page creation, leading to a Cross-site Scripting XSS issue. Specifically, the vulnerability allows for Store...
CVE-2025-31586
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GhozyLab Gallery – Photo Albums Plugin easy-media-gallery allows Stored XSS.This issue affects Gallery – Photo Albums Plugin: from n/a through = 1.3.170...
CVE-2025-31586
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GhozyLab Gallery – Photo Albums Plugin easy-media-gallery allows Stored XSS.This issue affects Gallery – Photo Albums Plugin: from n/a through = 1.3.170...
CVE-2025-31586
CVE-2025-31586 is a Stored Cross-Site Scripting vulnerability in the Gallery – Photo Albums Plugin for WordPress, affecting versions from unknown up to 1.3.170. The issue is caused by improper neutralization of input during web page generation, enabling stored XSS. The CVE entry notes a Medium se...
CVE-2025-31586 WordPress Gallery – Photo Albums Plugin plugin <= 1.3.170 - Stored Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GhozyLab Gallery – Photo Albums Plugin easy-media-gallery allows Stored XSS.This issue affects Gallery – Photo Albums Plugin: from n/a through = 1.3.170...
CVE-2025-26742
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GhozyLab Gallery for Social Photo feed-instagram-lite allows Stored XSS.This issue affects Gallery for Social Photo: from n/a through = 1.0.0.35...
CVE-2025-26742
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GhozyLab Gallery for Social Photo feed-instagram-lite allows Stored XSS.This issue affects Gallery for Social Photo: from n/a through = 1.0.0.35...
CVE-2025-26742 WordPress Gallery for Social Photo plugin <= 1.0.0.35 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GhozyLab Gallery for Social Photo feed-instagram-lite allows Stored XSS.This issue affects Gallery for Social Photo: from n/a through = 1.0.0.35...
CVE-2025-26742
CVE-2025-26742 affects Gallery for Social Photo (WordPress plugin). The issue is an Stored Cross-Site Scripting vulnerability caused by improper neutralization of input during web page generation in the plugin, affecting versions from
CVE-2025-26742 WordPress Gallery for Social Photo plugin <= 1.0.0.35 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GhozyLab Gallery for Social Photo feed-instagram-lite allows Stored XSS.This issue affects Gallery for Social Photo: from n/a through = 1.0.0.35...
CVE-2024-47623
CVE-2024-47623 describes a stored XSS in the WordPress plugin Gallery Lightbox (versions ≤ 1.0.0.39). The issue stems from improper input neutralization during web page generation, enabling stored cross-site scripting. Severity is low (CVSS 5.9). A fix is available in version 1.0.0.41; update the...