Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
photo gallery vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-2568
The Photo Gallery by Ays WordPress plugin prior to 5.1.7 does not escape some parameters before outputting it back in attributes, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin
Ays-pro Photo Gallery
NA
CVE-2007-5224
inc/exif.inc.php in Original Photo Gallery 0.11.2 and previous versions allows remote malicious users to execute arbitrary programs via the exif_prog parameter, which is specified in an exec function call.
Jimmac Original Photo Gallery
NA
CVE-2007-0836
admin.php in Coppermine Photo Gallery 1.4.10, and possibly earlier, allows remote authenticated users to include arbitrary local and possibly remote files via the (1) "Path to custom header include" and (2) "Path to custom footer include" form fields. NOTE: Th...
Coppermine Coppermine Photo Gallery
1 EDB exploit
9.8
CVSSv3
CVE-2016-10921
The gallery-photo-gallery plugin prior to 1.0.1 for WordPress has SQL injection.
Ays-pro Photo Gallery
NA
CVE-2007-3558
SQL injection vulnerability in Coppermine Photo Gallery (CPG) prior to 1.4.11 allows remote malicious users to execute arbitrary SQL commands via an album password cookie to an unspecified component.
Coppermine Coppermine Photo Gallery
1 EDB exploit
NA
CVE-2008-6789
SQL injection vulnerability in MindDezign Photo Gallery 2.2 allows remote malicious users to execute arbitrary SQL commands via the username parameter in a login action to the admin module in index.php, a different vector than CVE-2008-6788.
Minddezign Photo Gallery 2.2
2 EDB exploits
NA
CVE-2008-6790
The admin module in MindDezign Photo Gallery 2.2 allows remote malicious users to add administrative users and gain privileges via a modified username parameter in an edit account action to index.php.
Minddezign Photo Gallery 2.2
1 EDB exploit
NA
CVE-2005-2216
PHP remote file inclusion vulnerability in gals.php in PhotoGal Photo Gallery 1.5 and previous versions allows remote malicious users to execute arbitrary code via the news_file parameter.
Photogal Photogal Photo Gallery
NA
CVE-2007-1414
Multiple PHP remote file inclusion vulnerabilities in Coppermine Photo Gallery (CPG) allow remote malicious users to execute arbitrary PHP code via a URL in the (1) cmd parameter to (a) image_processor.php or (b) picmgmt.inc.php, or the (2) path parameter to (c) include/functions...
Coppermine Coppermine Photo Gallery
8.8
CVSSv3
CVE-2014-9312
Unrestricted File Upload vulnerability in Photo Gallery 1.2.5.
10web Photo Gallery 1.2.5
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »