Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gallery vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2013-3684
NextGEN Gallery plugin prior to 1.9.13 for WordPress: ngggallery.php file upload
Imagely Nextgen Gallery
1 EDB exploit
10
CVSSv2
CVE-2019-14313
A SQL injection vulnerability exists in the 10Web Photo Gallery plugin prior to 1.5.31 for WordPress. Successful exploitation of this vulnerability would allow a remote malicious user to execute arbitrary SQL commands on the affected system via filemanager/model.php.
10web Photo Gallery
10
CVSSv2
CVE-2012-3575
Unrestricted file upload vulnerability in uploader.php in the RBX Gallery plugin 2.1 for WordPress allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in uploads/rbxslider.
Rbx Gallery Rbx Gallery 2.1
1 EDB exploit
10
CVSSv2
CVE-2012-2405
Gallery 2 prior to 2.3.2 and 3 prior to 3.0.3 does not properly implement encryption, which has unspecified impact and attack vectors, a different vulnerability than CVE-2012-1113.
Maian Gallery 2.3
Maian Gallery 2.3.1
Menalto Gallery 2.2.6
Maian Gallery 3.0.1
Maian Gallery 3.0.2
Maian Gallery 3.0
10
CVSSv2
CVE-2008-4509
Unrestricted file upload vulnerability in processFiles.php in FOSS Gallery Admin and FOSS Gallery Public 1.0 beta allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in the ro...
Foss Gallery Foss Gallery 1.0
3 EDB exploits
10
CVSSv2
CVE-2008-0735
SQL injection vulnerability in mod/gallery/ajax/gallery_data.php in AuraCMS 2.2 allows remote malicious users to execute arbitrary SQL commands via the albums parameter.
Auracms Auracms 2.2
1 EDB exploit
10
CVSSv2
CVE-2007-6691
Multiple unspecified vulnerabilities in Menalto Gallery prior to 2.2.4 have unknown impact, related to (1) "hotlink protection" in the URL rewrite module, (2) a WebDAV view in the WebDAV module, (3) a comment view in the Comment module, (4) unspecified "item inform...
Menalto Gallery
10
CVSSv2
CVE-2007-6685
Unspecified vulnerability in the Publish XP module Menalto Gallery prior to 2.2.4 allows malicious users to create albums and upload files via unknown vectors.
Menalto Gallery Publish Xp Module
10
CVSSv2
CVE-2007-6690
The Gallery Remote module in Menalto Gallery prior to 2.2.4 does not check permissions for unspecified GR commands, which has unknown impact and attack vectors.
Menalto Gallery
10
CVSSv2
CVE-2007-6686
The URL rewrite module in Menalto Gallery prior to 2.2.4 allows malicious users to include and execute arbitrary local files via unknown vectors related to the admin controller.
Menalto Gallery
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »