Gallery For Social Photo
Approved changes feed: RSS · Atom
cpe:2.3:a:ghozylab:gallery_for_social_photo:*:*:*:*:*:wordpress:*:*
part: a version: * update: *
| Vendor | Ghozylab (33c2dab5-504d-5881-b929-cf857c38db21) |
|---|---|
| Product | Gallery For Social Photo (99e623c4-1025-50be-a8be-9f7aa53dc3d1) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-3236 |
vulnerable | 2026-06-08 06:41:52.751660 |
Easy Notify Lite < 1.1.33 - Contributor+ Stored XSS
The Popup Builder WordPress plugin before 1.1.33 does not sanitise and escape some of its Notification fields, which could allow users such as contributor and above to perform Stored Cross-Site Scripting attacks.
Published: 2024-06-17T06:00:01.133Z
Updated: 2024-08-01T20:05:08.361Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-2224 |
vulnerable | 2026-06-08 05:43:35.042764 |
Gallery for Social Photo <= 1.0.0.27 - Cross-Site Request Forgery to Post Duplication
MEDIUM (5.4)
The WordPress plugin Gallery for Social Photo is vulnerable to Cross-Site Request Forgery in versions up to, and including 1.0.0.27 due to failure to properly check for the existence of a nonce in the function gifeed_duplicate_feed. This make it possible for unauthenticated attackers to duplicate existing posts or pages granted they can trick a site administrator into performing an action such as clicking on a link.
Published: 2022-07-18T16:18:58.000Z
Updated: 2026-04-08T17:21:11.022Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.