Lucene search
K

29 matches found

CVE
CVE
added 4 days ago10 views

CVE-2026-5743

The CVE concerns the SimpLy Gallery Block & Lightbox WordPress plugin. A stored XSS vulnerability exists through the sliderMaxHeight block attribute in all versions up to and including 3.3.3.2, caused by insufficient input sanitization and output escaping in pgc_sgb_render_callback(). The root ca...

6.4CVSS6.2AI score0.00259EPSS
Exploits0References10
Patchstack
Patchstack
added 2026/05/01 9:31 a.m.7 views

WordPress Mixed Media Gallery Blocks plugin <= 3.2.4.4 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin SimpLy Gallery versions = 3.2.4.4...

6.1CVSS5.8AI score0.00276EPSS
Exploits0References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/26 5:4 p.m.6 views

CVE-2026-25345

Improper Validation of Specified Quantity in Input vulnerability in GalleryCreator SimpLy Gallery simply-gallery-block allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects SimpLy Gallery: from n/a through = 3.3.2...

9.9CVSS5.8AI score0.00447EPSS
Exploits0References1
NVD
NVD
added 2026/03/25 5:16 p.m.5 views

CVE-2026-25345

Improper Validation of Specified Quantity in Input vulnerability in GalleryCreator SimpLy Gallery simply-gallery-block allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects SimpLy Gallery: from n/a through = 3.3.2...

9.9CVSS0.00447EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/25 4:14 p.m.2 views

CVE-2026-25345 WordPress SimpLy Gallery plugin <= 3.3.2 - Arbitrary Code Execution vulnerability

Improper Validation of Specified Quantity in Input vulnerability in GalleryCreator SimpLy Gallery simply-gallery-block allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects SimpLy Gallery: from n/a through = 3.3.2...

9.9CVSS5.9AI score0.00447EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/25 4:14 p.m.27 views

CVE-2026-25345 WordPress SimpLy Gallery plugin <= 3.3.2 - Arbitrary Code Execution vulnerability

Improper Validation of Specified Quantity in Input vulnerability in GalleryCreator SimpLy Gallery simply-gallery-block allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects SimpLy Gallery: from n/a through = 3.3.2...

9.9CVSS0.00447EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 4:14 p.m.12 views

CVE-2026-25345

CVE-2026-25345 affects the WordPress SimpLy Gallery plugin (simply-gallery-block) up to version 3.3.2. The issue is an improper validation of a specified quantity in input, allowing access to functionality not properly constrained by ACLs. This can lead to arbitrary code execution (as reported in...

9.9CVSS5.8AI score0.00447EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.10 views

WordPress plugin SimpLy Gallery 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

9.9CVSS5.8AI score0.00447EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.7 views

PT-2026-27907

Name of the Vulnerable Software and Affected Versions SimpLy Gallery versions n/a through 3.3.2 Description An improper validation of the specified quantity in input within the GalleryCreator SimpLy Gallery simply-gallery-block component allows access to functionality that is not properly...

9.9CVSS5.9AI score0.00447EPSS
Exploits0References3
Patchstack
Patchstack
added 2026/03/23 6:31 p.m.8 views

WordPress SimpLy Gallery plugin <= 3.3.2 - Arbitrary Code Execution vulnerability

Arbitrary Code Execution vulnerability discovered by mcdruid in WordPress Plugin SimpLy Gallery versions = 3.3.2...

9.9CVSS5.8AI score0.00447EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/10 3:13 p.m.8 views

CVE-2025-63052

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GalleryCreator SimpLy Gallery simply-gallery-block allows Stored XSS.This issue affects SimpLy Gallery: from n/a through = 3.3.2.1...

6.5CVSS5.9AI score0.00167EPSS
Exploits0References1
NVD
NVD
added 2025/12/09 4:18 p.m.7 views

CVE-2025-63052

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GalleryCreator SimpLy Gallery simply-gallery-block allows Stored XSS.This issue affects SimpLy Gallery: from n/a through = 3.3.2.1...

6.5CVSS0.00167EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/09 2:52 p.m.24 views

CVE-2025-63052 WordPress SimpLy Gallery plugin <= 3.3.2.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GalleryCreator SimpLy Gallery simply-gallery-block allows Stored XSS.This issue affects SimpLy Gallery: from n/a through = 3.3.2.1...

6.5CVSS0.00167EPSS
Exploits0References1
CVE
CVE
added 2025/12/09 2:52 p.m.11 views

CVE-2025-63052

The CVE-2025-63052 entry applies to the WordPress plugin SimpLy Gallery (simply-gallery-block) version

6.5CVSS5.9AI score0.00167EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/09 2:52 p.m.5 views

CVE-2025-63052 WordPress SimpLy Gallery plugin <= 3.3.2.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GalleryCreator SimpLy Gallery simply-gallery-block allows Stored XSS.This issue affects SimpLy Gallery: from n/a through = 3.3.2.1...

6.5CVSS5.2AI score0.00167EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/09 12:0 a.m.12 views

PT-2025-50053

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in GalleryCreator SimpLy Gallery simply-gallery-block allows Stored XSS.This issue affects SimpLy Gallery: from n/a through = 3.2.8...

6AI score0.00167EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/12/09 12:0 a.m.4 views

WordPress plugin SimpLy Gallery 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to set up personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security...

6.5CVSS5.9AI score0.00167EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/10/26 8:22 a.m.6 views

WordPress SimpLy Gallery plugin <= 3.3.2.1 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Peter Thaleikis in WordPress Plugin SimpLy Gallery versions = 3.3.2.1...

6.5CVSS5.2AI score0.00167EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-11579

Malware in sbrugna...

5.4CVSS5.6AI score0.00618EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/22 9:4 p.m.9 views

CVE-2021-24667

A stored cross-site scripting vulnerability has been discovered in : Simply Gallery Blocks with Lightbox Version – 2.2.0 & below. The vulnerability exists in the Lightbox functionality where a user with low privileges is allowed to execute arbitrary script code within the context of the...

5.4CVSS6.4AI score0.00618EPSS
Exploits1References1
Rows per page
Query Builder