Michalaugustyniak Misiek_photo_album
2 CVEs affecting Michalaugustyniak Misiek_photo_album. Latest disclosed: 2024-09-12. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-7817 | Medium | 6.5 | 2024-09-12 | The Misiek Photo Album WordPress plugin through 1.4.3 does not have CSRF checks in some places, which could allow attackers to make logged in users delete arbi… |
CVE-2024-7818 | Medium | 6.1 | 2024-09-12 | The Misiek Photo Album WordPress plugin through 1.4.3 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could all… |