CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

ATTACKERKB•added 2026/05/20 12:13 p.m.•9 views

CVE-2026-27424

Vulnrichment•added 2026/05/20 12:13 p.m.•7 views

CVE-2026-27424 WordPress Image Photo Gallery Final Tiles Grid plugin <= 3.6.11 - Broken Access Control vulnerability

CVE•added 2026/05/20 12:13 p.m.•11 views

CVE-2026-27424

CVE-2026-27424 affects the WordPress plugin Image Photo Gallery Final Tiles Grid (Final Tiles Grid Gallery Lite) up to version 3.6.11. The issue is a Missing Authorization / Broken Access Control vulnerability due to incorrectly configured access control security levels. The CVSS 3.1 base score i...

EUVD•added 2026/05/20 12:13 p.m.•10 views

EUVD-2026-31095

Cvelist•added 2026/05/20 12:13 p.m.•34 views

CVE-2026-27424 WordPress Image Photo Gallery Final Tiles Grid plugin <= 3.6.11 - Broken Access Control vulnerability

4.3CVSS0.00028EPSS

Patchstack•added 2026/05/20 12:12 p.m.•6 views

WordPress Image Photo Gallery Final Tiles Grid plugin <= 3.6.11 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Que Thanh Tuan in WordPress Plugin Image Photo Gallery Final Tiles Grid versions = 3.6.11...

Exploits0Affected Software1

Positive Technologies•added 2026/05/20 12:0 a.m.•6 views

PT-2026-42152

CNNVD•added 2026/05/20 12:0 a.m.•5 views

wordpress plugin Image Photo Gallery Final Tiles Grid 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. WordPress plugins are additional applications that can b...

OSV•added 2026/05/19 8:16 p.m.•2 views

DEBIAN-CVE-2026-32740

libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and prior contain a heap-buffer-overflow write vulnerability in the grid tile compositing, allowing an attacker to write 64 bytes of fully attacker-controlled data past the end of a chroma plane heap allocation by craftin...

8.8CVSS5.8AI score0.00015EPSS

Exploits1References1

CVE•added 2026/05/19 7:22 p.m.•11 views

CVE-2026-32740

libheif (HEIF/AVIF decoder/encoder) versions

8.8CVSS5.8AI score0.00015EPSS

Exploits1References2Affected Software1

RedhatCVE•added 2026/04/13 7:24 p.m.•1 views

CVE-2026-39510

Authorization Bypass Through User-Controlled Key vulnerability in WP Chill Image Photo Gallery Final Tiles Grid final-tiles-grid-gallery-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Image Photo Gallery Final Tiles Grid: from n/a through = 3.6.11...

2.7CVSS5.8AI score0.00033EPSS

EUVD•added 2026/04/08 9:31 a.m.•1 views

EUVD-2026-20177

5.9AI score0.00033EPSS

NVD•added 2026/04/08 9:16 a.m.•0 views

CVE-2026-39510

2.7CVSS0.00033EPSS

Vulnrichment•added 2026/04/08 8:30 a.m.•1 views

CVE-2026-39510 WordPress Image Photo Gallery Final Tiles Grid plugin <= 3.6.11 - Insecure Direct Object References (IDOR) vulnerability

5.8AI score0.00033EPSS

CVE•added 2026/04/08 8:30 a.m.•3 views

CVE-2026-39510

CVE-2026-39510 describes an Insecure Direct Object References (IDOR) vulnerability in the WordPress plugin WP Chill Image Photo Gallery Final Tiles Grid (final-tiles-grid-gallery-lite)

2.7CVSS5.9AI score0.00033EPSS

Cvelist•added 2026/04/08 8:30 a.m.•19 views

CVE-2026-39510 WordPress Image Photo Gallery Final Tiles Grid plugin <= 3.6.11 - Insecure Direct Object References (IDOR) vulnerability

2.7CVSS0.00033EPSS

ATTACKERKB•added 2026/04/08 8:30 a.m.•3 views

CVE-2026-39510

5.9AI score0.00033EPSS