CVE-2025-26581
- EPSS 0.07%
- Veröffentlicht 26.03.2025 14:24:20
- Zuletzt bearbeitet 27.03.2025 16:45:27
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in videowhisper Picture Gallery allows Reflected XSS. This issue affects Picture Gallery: from n/a through 1.6.2.
CVE-2024-13584
- EPSS 0.07%
- Veröffentlicht 22.01.2025 04:15:06
- Zuletzt bearbeitet 24.01.2025 18:20:40
The Picture Gallery – Frontend Image Uploads, AJAX Photo List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'videowhisper_pictures' shortcode in all versions up to, and including, 1.5.19 due to insufficient input ...
CVE-2024-12696
- EPSS 0.11%
- Veröffentlicht 18.01.2025 07:15:08
- Zuletzt bearbeitet 18.01.2025 07:15:08
The Picture Gallery – Frontend Image Uploads, AJAX Photo List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's videowhisper_picture_upload_guest shortcode in all versions up to, and including, 1.5.22 due to insuffici...
CVE-2024-34759
- EPSS 0.14%
- Veröffentlicht 04.06.2024 19:20:03
- Zuletzt bearbeitet 21.11.2024 09:19:20
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in VideoWhisper Picture Gallery allows Stored XSS.This issue affects Picture Gallery: from n/a through 1.5.11.