CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

42 matches found

RedhatCVE•added 2026/01/09 12:15 p.m.•3 views

CVE-2018-1000172

Imagely NextGEN Gallery version 2.2.30 and earlier contains a Cross Site Scripting XSS vulnerability in Image Alt & Title Text. This attack appears to be exploitable via a victim viewing the image in the administrator page. This vulnerability appears to have been fixed in 2.2.45...

4.8CVSS6AI score0.00205EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:16 a.m.•3 views

CVE-2022-38468

Cross-Site Request Forgery CSRF vulnerability in Imagely WordPress Gallery Plugin – NextGEN Gallery plugin = 3.28 leading to thumbnail alteration...

4.3CVSS6.9AI score0.00184EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:4 a.m.•1 views

CVE-2024-39627

Improper Neutralization of Input During Web Page Generation XSS or 'Cross-site Scripting' vulnerability in Imagely NextGEN Gallery allows Stored XSS.This issue affects NextGEN Gallery: from n/a through 3.59.3...

5.9CVSS6AI score0.00277EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2018-1870

Malware in sbrugna...

4.8CVSS5.1AI score0.00205EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-41051

Malicious code in bioql PyPI...

4.3CVSS6.1AI score0.00184EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-52384

Malicious code in bioql PyPI...

8.8CVSS9.2AI score0.00268EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2024-38133

Malicious code in bioql PyPI...

5.9CVSS6.6AI score0.00277EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 5:44 a.m.•3 views

CVE-2023-48328

Cross-Site Request Forgery CSRF vulnerability in Imagely WordPress Gallery Plugin – NextGEN Gallery allows Cross Site Request Forgery.This issue affects WordPress Gallery Plugin – NextGEN Gallery: from n/a through 3.37...

8.8CVSS8.5AI score0.00268EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 8:7 a.m.•7 views

CVE-2019-14314

A SQL injection vulnerability exists in the Imagely NextGEN Gallery plugin before 3.2.11 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system via...

9.8CVSS8.6AI score0.32413EPSS

Exploits1References1

NVD•added 2024/08/01 11:15 p.m.•18 views

CVE-2024-39627

5.9CVSS0.00277EPSS

Exploits0References1

CVE•added 2024/08/01 10:30 p.m.•47 views

CVE-2024-39627

CVE-2024-39627 : A stored cross-site scripting (XSS) vulnerability exists in WordPress plugin NextGEN Gallery (affected versions:

5.9CVSS5.8AI score0.00277EPSS

Exploits0References1Affected Software1

Cvelist•added 2024/08/01 10:30 p.m.•18 views

CVE-2024-39627 WordPress Photo Gallery, Sliders, Proofing and Themes – NextGEN Gallery plugin <= 3.59.3 - Cross Site Scripting (XSS) vulnerability

5.9CVSS0.00277EPSS

Exploits0References1

OSV•added 2023/11/30 4:15 p.m.•1 views

CVE-2023-48328

8.8CVSS7.3AI score0.00268EPSS

Exploits0References1

NVD•added 2023/11/30 4:15 p.m.•15 views

CVE-2023-48328

8.8CVSS0.00268EPSS

Exploits0References1

Prion•added 2023/11/30 4:15 p.m.•18 views

Cross site request forgery (csrf)

6.8CVSS7.1AI score0.00268EPSS

Exploits0References1Affected Software1

CVE•added 2023/11/30 4:5 p.m.•60 views

CVE-2023-48328

CVE-2023-48328 affects Imagely WordPress Gallery Plugin – NextGEN Gallery (≤3.37). It is a Cross-Site Request Forgery (CSRF) vulnerability that could enable unauthorized actions. A fix is available in 3.39; upgrade to 3.39+ to mitigate. Other sources (OpenVAS/Patchstack) corroborate CSRF risk for...

8.8CVSS8.5AI score0.00268EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2023/11/30 12:0 a.m.•4 views

PT-2023-30788 · Imagely · Imagely Wordpress Gallery Plugin - Nextgen Gallery

Name of the Vulnerable Software and Affected Versions: Imagely WordPress Gallery Plugin – NextGEN Gallery versions through 3.37 Description: A Cross-Site Request Forgery CSRF issue allows unauthorized actions to be performed on behalf of a user. This can lead to various security problems, includi...

8.8CVSS8.9AI score0.00268EPSS

Exploits0References6

OpenVAS•added 2023/08/09 12:0 a.m.•11 views

WordPress NextGEN Gallery Plugin 1.9.10 < 2.0.0 Path Disclosure Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:imagely:nextgengallery"; if description...

7.5CVSS7AI score0.3357EPSS

Exploits1References1

OSV•added 2023/03/01 2:15 p.m.•0 views

CVE-2022-38468

Cross-Site Request Forgery CSRF vulnerability in Imagely WordPress Gallery Plugin – NextGEN Gallery plugin = 3.28 leading to thumbnail alteration...

4.3CVSS5.8AI score

Exploits0References1

Prion•added 2023/03/01 2:15 p.m.•13 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in Imagely WordPress Gallery Plugin – NextGEN Gallery plugin = 3.28 leading to thumbnail alteration...

4.3CVSS4.7AI score0.00184EPSS

Exploits0References1Affected Software1