Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gallery project gallery vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-27040
Simple Image Gallery v1.0 exists to contain a remote code execution (RCE) vulnerability via the username parameter.
Simple Image Gallery Web App Project Simple Image Gallery Web App 1.0
6.1
CVSSv3
CVE-2014-4553
Cross-site Scripting (XSS) in the spreadshirt-rss-3d-cube-flash-gallery plugin 2014 for WordPress allows remote malicious users to execute arbitrary web script or HTML via unspecified parameters.
Spreadshirt-rss-3d-cube-flash-gallery Project Spreadshirt-rss-3d-cube-flash-gallery 2014
9.8
CVSSv3
CVE-2023-23162
Art Gallery Management System Project v1.0 exists to contain a SQL injection vulnerability via the cid parameter at product.php.
Phpgurukul Art Gallery Management System 1.0
9.8
CVSSv3
CVE-2023-23163
Art Gallery Management System Project v1.0 exists to contain a SQL injection vulnerability via the editid parameter.
Phpgurukul Art Gallery Management System 1.0
6.1
CVSSv3
CVE-2023-23161
A reflected cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the artname parameter under ART TYPE option in the navigation bar.
Phpgurukul Art Gallery Management System 1.0
8.8
CVSSv3
CVE-2020-28687
The edit profile functionality in ARTWORKS GALLERY IN PHP, CSS, JAVASCRIPT, AND MYSQL 1.0 allows remote malicious users to upload arbitrary files.
Artworks Gallery In Php\\, Css\\, Javascript\\, And Mysql Project Artworks Gallery In Php\\, Css\\, Javascript\\, And Mysql 1.0
8.8
CVSSv3
CVE-2020-28688
The add artwork functionality in ARTWORKS GALLERY IN PHP, CSS, JAVASCRIPT, AND MYSQL 1.0 allows remote malicious users to upload arbitrary files.
Artworks Gallery In Php\\, Css\\, Javascript\\, And Mysql Project Artworks Gallery In Php\\, Css\\, Javascript\\, And Mysql 1.0
9.8
CVSSv3
CVE-2023-23155
Art Gallery Management System Project in PHP 1.0 exists to contain a SQL injection vulnerability via the username parameter in the Admin Login.
Phpgurukul Art Gallery Management System 1.0
9.8
CVSSv3
CVE-2023-23156
Art Gallery Management System Project in PHP 1.0 exists to contain a SQL injection vulnerability via the pid parameter in the single-product page.
Phpgurukul Art Gallery Management System 1.0
5.4
CVSSv3
CVE-2023-23157
A stored cross-site scripting (XSS) vulnerability in Art Gallery Management System Project v1.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the fullname parameter on the enquiry page.
Phpgurukul Art Gallery Management System 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
NEXT »