CVE-2025-23629 WordPress Gallerio plugin <= 1.0.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Subhasis Laha Gallerio gallerio allows Reflected XSS.This issue affects Gallerio: from n/a through = 1.0.1...

WordPress Gallerio Plugin <= 1.01 is vulnerable to Arbitrary File Upload

Software Gallerio Type Plugin Vulnerable versions = 1.01 Fixed in N/A OWASP Top 10 A3: Injection Classification Arbitrary File Upload CVE CVE-2024-52400 Patch priority High CVSS severity High 9.9 Developer Claim ownership PSID b36e242fa444 Credits CTRL Chance Required privilege Subscriber Publish...