Simple Image Gallery Web App Security Vulnerabilities and Issues — Simple Image Gallery Web App CVE List

Lucene search

Simple Image Gallery Web App ProjectSimple Image Gallery Web App

4 matches found

CVE•added 2022/11/17 12:15 a.m.•85 views

CVE-2021-38819

A SQL injection vulnerability exits on the Simple Image Gallery System 1.0 application through "id" parameter on the album page.

8.8CVSS9AI score0.00264EPSS

CVE•added 2021/12/14 4:15 p.m.•40 views

CVE-2021-39313

The Simple Image Gallery WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the msg parameter found in the ~/simple-image-gallery.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.0.6.

6.1CVSS6AI score0.0021EPSS

CVE•added 2021/08/16 2:15 p.m.•39 views

CVE-2021-38753

An unrestricted file upload on Simple Image Gallery Web App can be exploited to upload a web shell and executed to gain unauthorized access to the server hosting the web app.

9.8CVSS9.6AI score0.00517EPSS

CVE•added 2023/03/16 4:15 p.m.•37 views

CVE-2023-27040

Simple Image Gallery v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the username parameter.

9.8CVSS9.8AI score0.01704EPSS