| CVE-2024-10144 | Photo Gallery, Images, Slider in Rbs Image Gallery < 3.2.22 - Contributor+ Stored XSS | Unknown | Photo Gallery, Images, Slider in Rbs Image Gallery | - | - | 2025-05-15 20:06:42 | Deep Dive |
| CVE-2025-46476 | WordPress Awesome Wp Image Gallery plugin <= 1.0 - Cross Site Scripting (XSS) Vulnerability | nayon46 | Awesome Wp Image Gallery | Medium | 6.5 | 2025-04-24 16:08:48 | Deep Dive |
| CVE-2025-27291 | WordPress Photo Gallery – Image Gallery Plugin <= 2.0.4 - Reflected Cross Site Scripting (XSS) vulnerability | uxgallery | WordPress Photo Gallery – Image Gallery | High | 7.1 | 2025-04-17 15:48:06 | Deep Dive |
| CVE-2025-2269 | Photo Gallery by 10Web – Mobile-Friendly Image Gallery <= 1.8.34 Reflected Cross-Site Scripting via 'image_id' Parameter | 10web | Photo Gallery by 10Web – Mobile-Friendly Image Gallery | Medium | 6.1 | 2025-04-11 23:21:55 | Deep Dive |
| CVE-2024-9416 | Modula Image Gallery <= 2.10.1 - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via FancyBox 5 JavaScript Library | wpchill | Modula Image Gallery – Photo Grid & Video Gallery | Medium | 6.4 | 2025-04-03 12:22:36 | Deep Dive |
| CVE-2024-12114 | FooGallery – Responsive Photo Gallery, Image Viewer, Justified, Masonry & Carousel <= 2.4.29 - Insecure Direct Object Reference to Authenticated (Custom+) Arbitrary Post/Page Updates | fooplugins | Gallery by FooGallery | Medium | 4.3 | 2025-03-08 05:30:09 | Deep Dive |
| CVE-2024-12119 | FooGallery – Responsive Photo Gallery, Image Viewer, Justified, Masonry & Carousel <= 2.4.29 - Authenticated (Custom+) Stored Cross-Site Scripting via Album Title Size | fooplugins | Gallery by FooGallery | Medium | 6.4 | 2025-03-08 05:30:09 | Deep Dive |
| CVE-2024-13906 | Gallery by BestWebSoft – Customizable Image and Photo Galleries for WordPress <= 4.7.3 - Authenticated (Administrator+) PHP Object Injection | bestwebsoft | Gallery by BestWebSoft – Customizable Image and Photo Galleries for WordPress | High | 7.2 | 2025-03-07 07:22:24 | Deep Dive |
| CVE-2025-22624 | FooGallery – Responsive Photo Gallery, Image Viewer, Justified, Masonry and Carousel 2.4.29 - Reflected cross-site scripting (XSS) | bradvin | FooGallery - Responsive Photo Gallery, Image Viewer, Justified, Masonry & Carousel | 中危 | - | 2025-02-27 18:26:27 | Deep Dive |
| CVE-2024-6261 | Image Photo Gallery Final Tiles Grid <= 3.6.0 - Authenticated (Contributor+) DOM-Based Stored Cross-Site Scripting | wpchill | Image Photo Gallery Final Tiles Grid | Medium | 6.4 | 2025-02-27 05:23:05 | Deep Dive |
| CVE-2025-24697 | WordPress Image Gallery – Responsive Photo Gallery plugin <= 1.0.5 - Broken Access Control vulnerability | Realwebcare | Image Gallery – Responsive Photo Gallery | Medium | 6.5 | 2025-02-03 14:22:49 | Deep Dive |
| CVE-2025-23938 | WordPress Image Gallery Box by CRUDLab Plugin <= 1.0.3 - Local File Inclusion vulnerability | CRUDLab | Image Gallery Box by CRUDLab | High | 7.5 | 2025-01-22 14:29:24 | Deep Dive |
| CVE-2024-13584 | Picture Gallery – Frontend Image Uploads, AJAX Photo List <= 1.5.19 - Authenticated (Contributor+) Stored Cross-Site Scripting | videowhisper | Picture Gallery – Frontend Image Uploads, AJAX Photo List | Medium | 6.4 | 2025-01-22 03:21:31 | Deep Dive |
| CVE-2024-12696 | Picture Gallery – Frontend Image Uploads, AJAX Photo List <= 1.5.22 - Authenticated (Contributor+) Stored Cross-Site Scripting via videowhisper_picture_upload_guest Shortcode | videowhisper | Picture Gallery – Frontend Image Uploads, AJAX Photo List | Medium | 6.4 | 2025-01-18 07:05:10 | Deep Dive |
| CVE-2025-22317 | WordPress Gallery Images Ape plugin <= 2.2.8 - Reflected Cross Site Scripting (XSS) vulnerability | Gallery Ape | Photo Gallery – Image Gallery by Ape | High | 7.1 | 2025-01-15 15:23:40 | Deep Dive |
| CVE-2024-12403 | Image Gallery – Responsive Photo Gallery <= 1.0.5 - Reflected Cross-Site Scripting | realwebcare | Awesome Responsive Photo Gallery – Image & Video Lightbox Gallery | Medium | 6.1 | 2025-01-15 09:25:55 | Deep Dive |
| CVE-2024-12853 | Modula Image Gallery <= 2.11.10 - Authenticated (Author+) Arbitrary File Upload | wpchill | Modula Image Gallery – Photo Grid & Video Gallery | High | 8.8 | 2025-01-08 09:18:37 | Deep Dive |
| CVE-2025-22518 | WordPress Justified Image Gallery plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability | PluginsPoint | Justified Image Gallery | Medium | 6.5 | 2025-01-07 14:57:34 | Deep Dive |
| CVE-2024-10102 | Photo Gallery, Images, Slider in Rbs Image Gallery < 3.2.22 - Contributor+ Stored XSS | Unknown | Photo Gallery, Images, Slider in Rbs Image Gallery | 中危 | - | 2025-01-07 06:00:02 | Deep Dive |
| CVE-2023-45631 | WordPress Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 - Broken Access Control vulnerability | wpdevart | Responsive Image Gallery, Gallery Album | Medium | 4.3 | 2025-01-02 11:59:52 | Deep Dive |