Photo Gallery Security Vulnerabilities and Issues — Photo Gallery CVE List

Lucene search

10webPhoto Gallery

3 matches found

CVE•added 2024/06/07 10:15 a.m.•50 views

CVE-2024-5426

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘svg’ parameter in all versions up to, and including, 1.8.23 due to insufficient input sanitization and output escaping. This makes it possible for authenticated atta...

6.4CVSS5.5AI score0.0026EPSS

CVE•added 2024/06/11 3:16 p.m.•49 views

CVE-2024-35628

Missing Authorization vulnerability in Photo Gallery Team Photo Gallery by 10Web.This issue affects Photo Gallery by 10Web: from n/a through 1.8.25.

4.3CVSS5AI score0.00159EPSS

CVE•added 2024/06/07 10:15 a.m.•44 views

CVE-2024-5481

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.8.23 via the esc_dir function. This makes it possible for authenticated attackers to cut and paste (copy) the contents of arbitrary files on the se...

8.8CVSS7.4AI score0.01184EPSS