10web Photo_gallery
7 CVEs affecting 10web Photo_gallery. Latest disclosed: 2024-12-13. Critical: 0, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2014-9312 | High | 8.8 | 2017-08-28 | Unrestricted File Upload vulnerability in Photo Gallery 1.2.5. |
CVE-2017-12977 | High | 7.2 | 2017-08-21 | The Web-Dorado "Photo Gallery by WD - Responsive Photo Gallery" plugin before 1.3.51 for WordPress has a SQL injection vulnerability related to bwg_edit_tag()… |
CVE-2024-32583 | High | 7.1 | 2024-04-18 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Photo Gallery Team Photo Gallery by 10Web allows Reflecte… |
CVE-2024-33586 | Medium | 5.3 | 2024-04-29 | Missing Authorization vulnerability in Photo Gallery Team Photo Gallery by 10Web.This issue affects Photo Gallery by 10Web: from n/a through 1.8.20. |
CVE-2023-33995 | Medium | 4.3 | 2024-12-13 | Missing Authorization vulnerability in Photo Gallery Team Photo Gallery by 10Web allows Exploiting Incorrectly Configured Access Control Security Levels.This i… |
CVE-2015-1393 | | 2015-02-02 | SQL injection vulnerability in the Photo Gallery plugin before 1.2.11 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the… | |
CVE-2015-1055 | | 2015-01-16 | SQL injection vulnerability in the Photo Gallery plugin 1.2.7 for WordPress allows remote attackers to execute arbitrary SQL commands via the order_by paramete… |