Realmag777 Inpost Gallery
4 CVEs affecting Realmag777 Inpost Gallery. Latest disclosed: 2026-06-16. Critical: 1, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-39574 | Critical | 9.3 | 2026-06-16 | Unauthenticated SQL Injection in InPost Gallery <= 2.1.4.6 versions. |
CVE-2025-57889 | High | 7.5 | 2025-09-05 | Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in RealMag777 InPost Gallery inpost-galle… |
CVE-2024-11002 | Medium | 6.3 | 2024-11-26 | The The InPost Gallery plugin for WordPress is vulnerable to arbitrary shortcode execution via the inpost_gallery_get_shortcode_template AJAX action in all ver… |
CVE-2025-26903 | Medium | 4.3 | 2025-04-15 | Cross-Site Request Forgery (CSRF) vulnerability in RealMag777 InPost Gallery inpost-gallery allows Cross Site Request Forgery.This issue affects InPost Gallery… |