123 matches found
CVE-2026-57426
Unauthenticated Cross Site Scripting XSS in Modula - PRO = 2.10.8 versions...
CVE-2026-57426 WordPress Modula - PRO plugin <= 2.10.8 - Cross Site Scripting (XSS) vulnerability
Unauthenticated Cross Site Scripting XSS in Modula - PRO = 2.10.8 versions...
CVE-2026-57426
The provided data identifies an Unauthenticated Cross-Site Scripting (XSS) vulnerability in the WordPress plugin Modula – PRO , versions ≤ 2.10.8. Affected component is the Modula – PRO plugin for WordPress. The entry does not specify the root cause, affected files/functions, or the exact payload...
EUVD-2026-36940
Author PHP Object Injection in Modula Image Gallery = 2.14.18 versions...
CVE-2026-42688
Subscriber Cross Site Scripting XSS in Modula Image Gallery = 2.14.23 versions...
CVE-2026-39481
Author PHP Object Injection in Modula Image Gallery = 2.14.18 versions...
CVE-2026-42688 WordPress Modula Image Gallery plugin <= 2.14.23 - Cross Site Scripting (XSS) vulnerability
Subscriber Cross Site Scripting XSS in Modula Image Gallery = 2.14.23 versions...
CVE-2026-42688
The CVE details a Cross Site Scripting (XSS) vulnerability in WordPress Modula Image Gallery plugin, affected
CVE-2026-42688 WordPress Modula Image Gallery plugin <= 2.14.23 - Cross Site Scripting (XSS) vulnerability
Subscriber Cross Site Scripting XSS in Modula Image Gallery = 2.14.23 versions...
EUVD-2026-36836
Subscriber Cross Site Scripting XSS in Modula Image Gallery = 2.14.23 versions...
CVE-2026-39481 WordPress Modula Image Gallery plugin <= 2.14.18 - PHP Object Injection vulnerability
Author PHP Object Injection in Modula Image Gallery = 2.14.18 versions...
CVE-2026-39481
CVE-2026-39481 affects the WordPress plugin Modula Image Gallery (versions up to 2.14.18). The issue is described as a PHP Object Injection vulnerability in the plugin, with the author component cited in the initial description. Providing concrete exploit details, affected files, or remediation s...
PT-2026-49382
Author PHP Object Injection in Modula Image Gallery = 2.14.18 versions...
PT-2026-49462
Subscriber Cross Site Scripting XSS in Modula Image Gallery = 2.14.23 versions...
WordPress Modula Image Gallery plugin <= 2.14.23 - Cross Site Scripting (XSS) vulnerability
Cross Site Scripting XSS vulnerability discovered by Nguyen Ba Khanh in WordPress Plugin Modula Image Gallery versions = 2.14.23...
WordPress Modula Image Gallery plugin <= 2.14.18 - PHP Object Injection vulnerability
PHP Object Injection vulnerability discovered by daroo in WordPress Plugin Modula Image Gallery versions = 2.14.18...
CVE-2026-1254
The Modula Image Gallery – Photo Grid & Video Gallery plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.13.6. This is due to the plugin not properly verifying that a user is authorized to modify specific posts before updating them via the REST API...
CVE-2026-1254
The Modula Image Gallery – Photo Grid & Video Gallery plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.13.6. This is due to the plugin not properly verifying that a user is authorized to modify specific posts before updating them via the REST API...
CVE-2026-1254
The Modula Image Gallery – Photo Grid & Video Gallery plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.13.6. This is due to the plugin not properly verifying that a user is authorized to modify specific posts before updating them via the REST API...
CVE-2026-1254 Modula Image Gallery – Photo Grid & Video Gallery <= 2.13.6 - Missing Authorization to Authenticated (Contributor+) Arbitrary Post/Page Editing
The Modula Image Gallery – Photo Grid & Video Gallery plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.13.6. This is due to the plugin not properly verifying that a user is authorized to modify specific posts before updating them via the REST API...