Approved changes feed: RSS · Atom

cpe:2.3:a:10web:photo_gallery_by_10web:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor10Web (a48aaa7e-f686-5cd9-9b59-60b5c3bf60d0)
ProductPhoto Gallery By 10Web (ccaadcb7-ff20-5a8c-b61c-5fa0f972aafd)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2026-49771 vulnerable 2026-06-08 08:05:12.467594 WordPress Photo Gallery by 10Web plugin <= 1.8.41 - SQL Injection vulnerability
HIGH (7.6)
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in 10Web Photo Gallery by 10Web allows Blind SQL Injection. This issue affects Photo Gallery by 10Web: from n/a through 1.8.41.
Published: 2026-06-04T09:49:49.368Z
Updated: 2026-06-04T12:07:52.810Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2026-32330 vulnerable 2026-06-08 07:57:17.433222 WordPress Photo Gallery by 10Web plugin <= 1.8.37 - Cross Site Request Forgery (CSRF) vulnerability
MEDIUM (4.3)
Cross-Site Request Forgery (CSRF) vulnerability in 10Web Photo Gallery by 10Web photo-gallery allows Cross Site Request Forgery.This issue affects Photo Gallery by 10Web: from n/a through <= 1.8.37.
Published: 2026-03-13T11:41:55.160Z
Updated: 2026-04-29T09:51:57.561Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2026-27360 vulnerable 2026-06-08 07:53:22.265714 WordPress Photo Gallery by 10Web plugin <= 1.8.38 - Cross Site Scripting (XSS) vulnerability
MEDIUM (5.9)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 10Web Photo Gallery by 10Web photo-gallery allows Stored XSS.This issue affects Photo Gallery by 10Web: from n/a through <= 1.8.38.
Published: 2026-02-19T20:35:42.196Z
Updated: 2026-04-28T16:15:02.268Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2024-44043 vulnerable 2026-06-08 06:45:53.482301 WordPress Photo Gallery by 10Web plugin <= 1.8.27 - Cross Site Scripting (XSS) vulnerability
MEDIUM (5.9)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 10Web Photo Gallery by 10Web photo-gallery allows Stored XSS.This issue affects Photo Gallery by 10Web: from n/a through <= 1.8.27.
Published: 2024-10-06T11:58:45.334Z
Updated: 2026-04-28T16:10:16.953Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-33995 vulnerable 2026-06-08 06:06:24.171051 WordPress Photo Gallery by 10Web plugin <= 1.8.15 - Broken Access Control vulnerability
MEDIUM (4.3)
Missing Authorization vulnerability in Photo Gallery Team Photo Gallery by 10Web allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Photo Gallery by 10Web: from n/a through 1.8.15.
Published: 2024-12-13T14:23:32.267Z
Updated: 2026-04-28T16:08:26.292Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.