| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-14835 | WP Photo Album Plus <= 9.1.05.008 - Reflected Cross-Site Scripting | opajaap | WP Photo Album Plus | High | 7.1 | 2026-01-07 05:25:55 | Deep Dive |
| CVE-2025-8726 | WP Photo Album Plus <= 9.0.11.006 - Authenticated (Subscriber+) Stored Cross-Site Scripting via wppa_user_upload | opajaap | WP Photo Album Plus | Medium | 5.4 | 2025-10-04 02:24:36 | Deep Dive |
| CVE-2024-10958 | WP Photo Album Plus <= 8.8.08.007 - Unauthenticated Arbitrary Shortcode Execution via getshortcodedrenderedfenodelay | opajaap | WP Photo Album Plus | High | 7.3 | 2024-11-10 12:30:35 | Deep Dive |
| CVE-2024-9951 | Wordpress Photo Album Plus <= 8.8.05.003 - Reflected Cross-Site Scripting | opajaap | WP Photo Album Plus | Medium | 6.1 | 2024-10-17 07:34:44 | Deep Dive |
| CVE-2024-37416 | WordPress WP Photo Album Plus plugin <= 8.8.00.002 - Reflected Cross Site Scripting (XSS) vulnerability | J.N. Breetvelt a.k.a. OpaJaap | WP Photo Album Plus | High | 7.1 | 2024-07-22 08:31:53 | Deep Dive |
| CVE-2024-38713 | WordPress WP Photo Album Plus plugin <= 8.8.02.002 - Authenticated Stored Cross Site Scripting (XSS) vulnerability | J.N. Breetvelt a.k.a. OpaJaap | WP Photo Album Plus | Medium | 6.5 | 2024-07-20 07:25:27 | Deep Dive |
| CVE-2023-49774 | WordPress WP Photo Album Plus plugin <= 8.5.02.005 - IP Bypass vulnerability | J.N. Breetvelt a.k.a. OpaJaap | WP Photo Album Plus | Medium | 5.3 | 2024-06-04 11:23:29 | Deep Dive |
| CVE-2024-4037 | WP Photo Album Plus <= 8.7.02.003 - Unauthenticated Arbitrary Shortcode Execution | opajaap | WP Photo Album Plus | Medium | 6.5 | 2024-05-24 08:30:25 | Deep Dive |
| CVE-2024-31377 | WordPress WP Photo Album Plus plugin <= 8.7.01.001 - Unauth. Arbitrary File Upload vulnerability | J.N. Breetvelt a.k.a. OpaJaap | WP Photo Album Plus | Critical | 10.0 | 2024-05-13 09:06:22 | Deep Dive |
| CVE-2024-31286 | WordPress WP Photo Album Plus plugin < 8.6.03.005 - Arbitrary File Upload vulnerability | J.N. Breetvelt a.k.a. OpaJaap | WP Photo Album Plus | Critical | 9.9 | 2024-04-07 17:30:51 | Deep Dive |
| CVE-2023-49812 | WordPress WP Photo Album Plus Plugin <= 8.5.02.005 is vulnerable to Insecure Direct Object References (IDOR) | J.N. Breetvelt a.k.a. OpaJaap | WP Photo Album Plus | Medium | 5.3 | 2023-12-19 20:55:35 | Deep Dive |
| CVE-2023-49813 | WordPress WP Photo Album Plus Plugin <= 8.5.02.005 is vulnerable to Cross Site Scripting (XSS) | J.N. Breetvelt a.k.a. OpaJaap | WP Photo Album Plus | High | 7.1 | 2023-12-14 15:51:03 | Deep Dive |