| CVE-2024-3129 | SourceCodester Image Accordion Gallery App add-image.php unrestricted upload | SourceCodester | Image Accordion Gallery App | Medium | 6.3 | 2024-04-01 16:00:06 | Deep Dive |
| CVE-2024-30550 | WordPress Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 - Reflected Cross Site Scripting (XSS) vulnerability | wpdevart | Responsive Image Gallery, Gallery Album | High | 7.1 | 2024-03-31 19:57:44 | Deep Dive |
| CVE-2024-31120 | WordPress Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 - Cross Site Scripting (XSS) vulnerability | wpdevart | Responsive Image Gallery, Gallery Album | Medium | 6.5 | 2024-03-31 18:48:31 | Deep Dive |
| CVE-2024-2086 | Integrate Google Drive <= 1.3.8 - Missing Authorization to Unauthenticated Settings Modification and Export | princeahmed | File Manager for Google Drive – Integrate Google Drive | Critical | 10.0 | 2024-03-30 04:31:09 | Deep Dive |
| CVE-2024-30428 | WordPress Contest Gallery plugin <= 24.0.3 - Reflected Cross Site Scripting (XSS) vulnerability | Wasiliy Strecker / ContestGallery developer | Contest Gallery | High | 7.1 | 2024-03-29 13:24:16 | Deep Dive |
| CVE-2024-1858 | Lightbox slider – Responsive Lightbox Gallery <= 1.9.9 - Authenticated (Contributor+) PHP Object Injection | weblizar | Lightbox slider – Responsive Lightbox Gallery | Medium | 5.4 | 2024-03-29 06:43:59 | Deep Dive |
| CVE-2024-30236 | WordPress Contest Gallery plugin <= 21.3.4 - SQL Injection vulnerability | Wasiliy Strecker / ContestGallery developer | Contest Gallery | High | 8.5 | 2024-03-28 04:44:55 | Deep Dive |
| CVE-2024-2999 | Campcodes Online Art Gallery Management System adminHome.php sql injection | Campcodes | Online Art Gallery Management System | Medium | 6.3 | 2024-03-27 21:00:07 | Deep Dive |
| CVE-2024-30238 | WordPress Photos and Files Contest Gallery plugin <= 21.3.2 - SQL Injection vulnerability | Wasiliy Strecker / ContestGallery developer | Contest Gallery | High | 8.5 | 2024-03-27 13:46:07 | Deep Dive |
| CVE-2024-29769 | WordPress Portfolio Gallery plugin <= 1.5.6 - Cross Site Scripting (XSS) vulnerability | - | Portfolio Gallery – Image Gallery Plugin | Medium | 6.5 | 2024-03-27 13:01:56 | Deep Dive |
| CVE-2024-29921 | WordPress Photo Gallery by Supsystic plugin <= 1.15.16 - Cross Site Scripting (XSS) vulnerability | supsystic | Photo Gallery by Supsystic | Medium | 5.9 | 2024-03-27 07:14:51 | Deep Dive |
| CVE-2024-29919 | WordPress Photo Gallery by Ays Plugin <=5.5.2 - Reflected Cross Site Scripting (XSS) vulnerability | Photo Gallery Team | Photo Gallery by Ays | High | 7.1 | 2024-03-27 07:11:56 | Deep Dive |
| CVE-2024-2930 | SourceCodester Music Gallery Site unrestricted upload | SourceCodester | Music Gallery Site | High | 7.3 | 2024-03-26 23:31:05 | Deep Dive |
| CVE-2024-1214 | Easy Social Feed <= 6.5.4 - Cross-Site Request Forgery | sjaved | Easy Social Feed – Social Photos Gallery and Post Feed for WordPress | Medium | 4.3 | 2024-03-12 23:33:51 | Deep Dive |
| CVE-2024-1278 | Easy Social Feed – Social Photos Gallery – Post Feed – Like Box <= 6.5.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | sjaved | Easy Social Feed – Social Photos Gallery and Post Feed for WordPress | Medium | 6.4 | 2024-03-12 23:33:51 | Deep Dive |
| CVE-2024-1213 | Easy Social Feed <= 6.5.4 - Cross-Site Request Forgery | sjaved | Easy Social Feed – Social Photos Gallery and Post Feed for WordPress | Medium | 5.4 | 2024-03-12 23:33:50 | Deep Dive |
| CVE-2024-1487 | Photos and Files Contest Gallery < 21.3.1 - Author+ Stored Cross Site Scripting | Unknown | Photos and Files Contest Gallery | - | - | 2024-03-11 17:56:07 | Deep Dive |
| CVE-2024-0825 | Vimeography: Vimeo Video Gallery WordPress Plugin <= 2.3.2 - Authenticated (Contributor+) PHP Object Injection | videogallery | Vimeography: Vimeo Video Gallery WordPress Plugin | High | 8.8 | 2024-03-05 01:56:02 | Deep Dive |
| CVE-2024-1859 | Slider Responsive Slideshow – Image slider, Gallery slideshow <= 1.3.8 - Authenticated (Contributor+) PHP Object Injection | awordpresslife | Responsive Slideshow | High | 8.8 | 2024-03-01 06:47:51 | Deep Dive |
| CVE-2023-51530 | WordPress GS Logo Slider Plugin <= 3.5.1 is vulnerable to Cross Site Request Forgery (CSRF) | GS Plugins | Logo Slider – Logo Showcase, Logo Carousel, Logo Gallery and Client Logo Presentation | Medium | 4.3 | 2024-02-29 04:49:09 | Deep Dive |