Video Gallery Security Vulnerabilities and Issues — Video Gallery CVE List

Lucene search

Total-softVideo Gallery

4 matches found

CVE•added 2023/11/06 9:15 a.m.•72 views

CVE-2023-45069

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Video Gallery by Total-Soft Video Gallery – Best WordPress YouTube Gallery Plugin allows SQL Injection.This issue affects Video Gallery – Best WordPress YouTube Gallery Plugin: from n/a through 2.1...

9.8CVSS9.9AI score0.0021EPSS

CVE•added 2024/12/06 4:15 a.m.•42 views

CVE-2024-10247

The Video Gallery – Best WordPress YouTube Gallery Plugin plugin for WordPress is vulnerable to time-based SQL Injection via the orderby parameter in all versions up to, and including, 2.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existi...

7.2CVSS7AI score0.00225EPSS

CVE•added 2024/12/06 4:15 a.m.•41 views

CVE-2024-9769

The Video Gallery – Best WordPress YouTube Gallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.4.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with ad...

4.8CVSS4.4AI score0.0004EPSS

CVE•added 2023/05/03 2:15 p.m.•29 views

CVE-2023-25979

Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Video Gallery by Total-Soft Video Gallery plugin

5.9CVSS4.9AI score0.00058EPSS