WordPress YayExtra plugin <= 1.5.5 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by Lê Quốc Bảo in WordPress Plugin YayExtra versions = 1.5.5...

CVE-2025-31756

Cross-Site Request Forgery CSRF vulnerability in tuyennv TZ PlusGallery tz-plus-gallery allows Cross Site Request Forgery.This issue affects TZ PlusGallery: from n/a through = 1.5.5...