| CVE-2024-30550 | WordPress Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 - Reflected Cross Site Scripting (XSS) vulnerability | wpdevart | Responsive Image Gallery, Gallery Album | High | 7.1 | 2024-03-31 19:57:44 | Deep Dive |
| CVE-2024-31120 | WordPress Gallery – Image and Video Gallery with Thumbnails plugin <= 2.0.3 - Cross Site Scripting (XSS) vulnerability | wpdevart | Responsive Image Gallery, Gallery Album | Medium | 6.5 | 2024-03-31 18:48:31 | Deep Dive |
| CVE-2024-29769 | WordPress Portfolio Gallery plugin <= 1.5.6 - Cross Site Scripting (XSS) vulnerability | - | Portfolio Gallery – Image Gallery Plugin | Medium | 6.5 | 2024-03-27 13:01:56 | Deep Dive |
| CVE-2024-1859 | Slider Responsive Slideshow – Image slider, Gallery slideshow <= 1.3.8 - Authenticated (Contributor+) PHP Object Injection | awordpresslife | Responsive Slideshow | High | 8.8 | 2024-03-01 06:47:51 | Deep Dive |
| CVE-2024-0221 | Photo Gallery by 10Web - Mobile-Friendly Image Gallery <= 1.8.19 - Directory Traversal to Arbitrary File Rename | 10web | Photo Gallery by 10Web – Mobile-Friendly Image Gallery | Critical | 9.1 | 2024-02-05 21:21:40 | Deep Dive |
| CVE-2024-22150 | WordPress Post Grid, Image Gallery & Portfolio for Elementor | PowerFolio Plugin <= 3.1 is vulnerable to Cross Site Scripting (XSS) | PWR Plugins | Portfolio & Image Gallery for WordPress | PowerFolio | Medium | 6.5 | 2024-01-31 18:18:31 | Deep Dive |
| CVE-2024-22295 | WordPress Robo Gallery Plugin <= 3.2.17 is vulnerable to Cross Site Scripting (XSS) | RoboSoft | Photo Gallery, Images, Slider in Rbs Image Gallery | Medium | 5.9 | 2024-01-31 17:30:41 | Deep Dive |
| CVE-2023-6924 | Photo Gallery by 10Web <= 1.8.18 - Authenticated (Administrator+) Stored Cross-Site Scripting via Widget | 10web | Photo Gallery by 10Web – Mobile-Friendly Image Gallery | Medium | 4.4 | 2024-01-11 08:32:29 | Deep Dive |
| CVE-2023-5431 | Left right image slideshow gallery <= 12.0 - Authenticated (Subscriber+) SQL Injection via Shortcode | gopiplus | Left right image slideshow gallery | High | 8.8 | 2023-10-31 08:32:52 | Deep Dive |
| CVE-2023-5435 | Up down image slideshow gallery <= 12.0 - Authenticated (Subscriber+) SQL Injection via Shortcode | gopiplus | Up down image slideshow gallery | High | 8.8 | 2023-10-31 08:32:49 | Deep Dive |
| CVE-2023-45630 | WordPress Responsive Image Gallery, Gallery Album Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS) | wpdevart | Gallery – Image and Video Gallery with Thumbnails | High | 7.1 | 2023-10-18 13:31:49 | Deep Dive |
| CVE-2023-45629 | WordPress Responsive Image Gallery, Gallery Album Plugin <= 2.0.3 is vulnerable to Cross Site Request Forgery (CSRF) | wpdevart | Gallery – Image and Video Gallery with Thumbnails | Medium | 5.4 | 2023-10-16 08:31:46 | Deep Dive |
| CVE-2023-39917 | WordPress Photo Gallery by Ays Plugin <= 5.2.6 is vulnerable to Cross Site Request Forgery (CSRF) | Photo Gallery Team | Photo Gallery by Ays – Responsive Image Gallery | Medium | 4.3 | 2023-10-03 11:14:29 | Deep Dive |
| CVE-2023-3499 | Robo Gallery < 3.2.16 - Admin+ Stored XSS | Unknown | Photo Gallery, Images, Slider in Rbs Image Gallery | 中危 | - | 2023-09-04 11:27:01 | Deep Dive |
| CVE-2023-32107 | WordPress Photo Gallery by Ays Plugin <= 5.1.3 is vulnerable to Cross Site Scripting (XSS) | Photo Gallery Team | Photo Gallery by Ays – Responsive Image Gallery | High | 7.1 | 2023-08-18 14:00:03 | Deep Dive |
| CVE-2021-4384 | WordPress Photo Gallery – Image Gallery <= 1.0.6 - Cross-Site Request Forgery Bypass | origincode | WordPress Photo Gallery – Image Gallery | Medium | 4.3 | 2023-07-01 03:30:12 | Deep Dive |
| CVE-2023-24414 | WordPress Robo Gallery Plugin <= 3.2.11 is vulnerable to Cross Site Request Forgery (CSRF) | RoboSoft | Photo Gallery, Images, Slider in Rbs Image Gallery | Medium | 4.3 | 2023-05-20 22:08:56 | Deep Dive |
| CVE-2023-27620 | WordPress Robo Gallery Plugin <= 3.2.12 is vulnerable to Cross Site Scripting (XSS) | RoboSoft | Photo Gallery, Images, Slider in Rbs Image Gallery | Medium | 6.5 | 2023-04-07 13:49:46 | Deep Dive |
| CVE-2022-47603 | WordPress Responsive Image Gallery, Gallery Album Plugin <= 2.0.1 is vulnerable to Cross Site Scripting (XSS) | wpdevart | Gallery – Image and Video Gallery with Thumbnails | High | 7.1 | 2023-03-29 18:57:56 | Deep Dive |
| CVE-2023-0441 | Gallery Blocks with Lightbox < 3.0.8 - Subscriber+ Arbitrary Options Update | Unknown | Gallery Blocks with Lightbox. Image Gallery, (HTML5 video , YouTube, Vimeo) Video Gallery and Lightbox for native gallery | 高危 | - | 2023-03-27 15:37:16 | Deep Dive |