Simple Image Gallery
Approved changes feed: RSS · Atom
cpe:2.3:a:duogeek:simple_image_gallery:*:*:*:*:*:wordpress:*:*
part: a version: * update: *
| Vendor | Duogeek (b08e79c4-78ac-5492-b85c-75150fa36c67) |
|---|---|
| Product | Simple Image Gallery (deb1e7c9-db75-5e12-aa55-084dfc2941d3) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/duogeekdev/simple-image-gallery |
purl2cpe | 2026-06-01 10:12:59.327062 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2021-39313 |
vulnerable | 2026-06-08 05:33:49.984825 |
Simple Image Gallery <= 1.0.6 Reflected Cross-Site Scripting
MEDIUM (6.1)
The Simple Image Gallery WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the msg parameter found in the ~/simple-image-gallery.php file which allows attackers to inject arbitrary web scripts, in versions up to and including 1.0.6.
Published: 2021-12-14T15:50:18.570Z
Updated: 2025-01-31T18:58:23.369Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.