Photo Gallery by 10Web 漏洞列表
共找到 5 个与 Photo Gallery by 10Web 相关的漏洞
📅 加载漏洞趋势中...
-
CVE-2021-24291: WordPress Photo Gallery by 10Web <1.5.69 - Cross-Site Scripting POC
WordPress Photo Gallery by 10Web plugin before 1.5.69 contains multiple reflected cross-site scripting vulnerabilities via the gallery_id, tag, album_id and theme_id GET parameters passed to the bwg_frontend_data AJAX action, available to both unauthenticated and authenticated users. -
CVE-2022-0169: Photo Gallery by 10Web < 1.6.0 - SQL Injection POC
The Photo Gallery by 10Web WordPress plugin before 1.6.0 does not validate and escape the bwg_tag_id_bwg_thumbnails_0 parameter before using it in a SQL statement via the bwg_frontend_data AJAX action (available to unauthenticated and authenticated users), leading to an unauthenticated SQL injection -
CVE-2021-24291: WordPress Photo Gallery by 10Web <1.5.69 - Cross-Site Scripting POC
WordPress Photo Gallery by 10Web plugin before 1.5.69 contains multiple reflected cross-site scripting vulnerabilities via the gallery_id, tag, album_id and theme_id GET parameters passed to the bwg_frontend_data AJAX action, available to both unauthenticated and authenticated users. -
CVE-2022-0169: Photo Gallery by 10Web < 1.6.0 - SQL Injection POC
The Photo Gallery by 10Web WordPress plugin before 1.6.0 does not validate and escape the bwg_tag_id_bwg_thumbnails_0 parameter before using it in a SQL statement via the bwg_frontend_data AJAX action (available to unauthenticated and authenticated users), leading to an unauthenticated SQL injection -
wordpress插件Photo Gallery by 10Web < 1.6.0 - SQL 注入 无POC
wordpress插件Photo Gallery by 10Web < 1.6.0 - SQL 注入