3 matches found
CVE-2023-0765
The CVE CVE-2023-0765 affects Gallery by BestWebSoft for WordPress, specifically versions before 4.7.0. Root cause: inadequate escaping in SQL queries enables a Blind SQL Injection when an attacker with at least Author privileges interacts with the Gallery while the Slider by BestWebSoft plugin i...
CVE-2023-0764
CVE-2023-0764 affects the Gallery by BestWebSoft WordPress plugin (versions
CVE-2017-2171
CVE-2017-2171 detail: A cross-site scripting vulnerability affects BestWebSoft WordPress plugins that display the BestWebSoft menu. The issue arises from a common function used to render the menu (CWE-79), enabling remote attackers to execute arbitrary script in a logged-in user’s browser. Affect...