Image Gallery – Photo Grid & Video Gallery
Approved changes feed: RSS · Atom
cpe:2.3:a:wpchill:image_gallery_–_photo_grid_&_video_gallery:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Wpchill (229d438d-d20e-586d-ac2f-e6b4e123f9dc) |
|---|---|
| Product | Image Gallery – Photo Grid & Video Gallery (da5eaace-301d-5ccb-89cd-dbc3e6953693) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-13891 |
vulnerable | 2026-06-03 14:58:53.917165 |
Image Gallery – Photo Grid & Video Gallery (Modula) <= 2.13.3 - Missing Authorization to Arbitrary Directory Listing
MEDIUM (6.5)
The Image Gallery – Photo Grid & Video Gallery plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 2.13.3. This is due to the modula_list_folders AJAX endpoint that lacks proper path validation and base directory restrictions. While the endpoint verifies user capabilities (Author+ with upload_files and edit_posts permissions), it fails to validate that user-supplied directory paths reside within safe directories. This makes it possible for authenticated attackers, with Author-level access and above, to enumerate arbitrary directories on the server via the modula_list_folders endpoint.
Published: 2025-12-12T07:20:35.167Z
Updated: 2026-04-08T17:00:39.071Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-13646 |
vulnerable | 2026-06-03 14:58:46.629069 |
Modula 2.13.1 - 2.13.2 - Authenticated (Author+) Arbitrary File Upload via Race Condition
HIGH (7.5)
The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'ajax_unzip_file' function in versions 2.13.1 to 2.13.2. This makes it possible for authenticated attackers, with Author-level access and above, to upload arbitrary files with race condition on the affected site's server which may make remote code execution possible.
Published: 2025-12-03T02:25:30.109Z
Updated: 2025-12-03T21:15:37.618Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-13645 |
vulnerable | 2026-06-03 14:58:46.627865 |
Modula 2.13.1 - 2.13.2 - Authenticated (Author+) Arbitrary File Deletion
HIGH (7.2)
The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'ajax_unzip_file' function in versions 2.13.1 to 2.13.2. This makes it possible for authenticated attackers, with Author-level access and above, to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).
Published: 2025-12-03T02:25:28.863Z
Updated: 2025-12-03T21:08:20.205Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.