Tinywebgallery Advanced_iframe

9 CVEs affecting Tinywebgallery Advanced_iframe. Latest disclosed: 2025-03-26. Critical: 0, High: 0.

Top CVEs affecting Tinywebgallery Advanced_iframe
CVESeverityScorePublishedSummary
CVE-2024-24870Medium6.52024-02-05Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Michael Dempfle Advanced iFrame allows Stored XSS.This is…
CVE-2023-51690Medium6.52024-02-01Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Advanced iFrame allows Stored XSS.This issue affects Adva…
CVE-2025-1439Medium6.42025-03-26The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'advanced_iframe' shortcode in all versions up to, and i…
CVE-2025-1437Medium6.42025-03-26The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'advanced_iframe' shortcode in all versions up to, and i…
CVE-2023-7069Medium6.42024-02-01The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'advanced_iframe' shortcode in all versions up to, and i…
CVE-2023-4775Medium6.42023-11-13The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'advanced_iframe' shortcode in versions up to, and including, 202…
CVE-2021-24953Medium6.12022-03-07The Advanced iFrame WordPress plugin before 2022 does not sanitise and escape the ai_config_id parameter before outputting it back in an admin page, leading to…
CVE-2025-1440Medium5.32025-03-26The Advanced iFrame plugin for WordPress is vulnerable to unauthorized excessive creation of options on the aip_map_url_callback() function in all versions up…
CVE-2024-1341Medium4.92024-02-29The Advanced iFrame plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's advanced_iframe shortcode in all versions up to, and inc…