CVE-2022-1946

The WordPress Gallery plugin before 2.0.0 contains a reflected Cross-Site Scripting vulnerability in which a parameter is not sanitized/escaped before being echoed in the AJAX response. The issue is exploitable via an AJAX action accessible to both unauthenticated and authenticated users, potenti...

CVE-2023-45631

CVE-2023-45631 concerns the WordPress plugin “Responsive Image Gallery, Gallery Album” (wpdevart) up to version 2.0.3. Multiple connected sources confirm a Missing Authorization/Broken Access Control vulnerability allowing unauthorized actions via AJAX (no explicit exploit details provided). Affe...

CVE-2024-30550

CVE-2024-30550 refers to an XSS vulnerability in wpdevart’s Responsive Image Gallery / Gallery Album. The issue is described as Reflected Cross-Site Scripting due to improper input neutralization during web page generation, affecting Gallery Album versions from n/a through 2.0.3. Connected source...

CVE-2024-31120

Technical details for CVE-2024-31120 are not publicly provided in the connected documents; no affected product/version or remediation details are disclosed here. Monitor official advisories and vendor patches for updates.

CVE-2024-37542

Affects WordPress plugin WpDevArt Responsive Image Gallery, Gallery Album (versions through 2.0.3). The issue is a Missing Authorization vulnerability likely causing Broken Access Control, enabling unauthorized access to restricted resources. Affected component: the plugin’s access control mechan...

CVE-2024-35750

CVE-2024-35750 describes an SQL Injection in the wpdevart Responsive Image Gallery, Gallery Album plugin (vulnerable

CVE-2023-45630

CVE-2023-45630 affects the WordPress plugin wpdevart Gallery – Image and Video Gallery with Thumbnails (versions