All 4 CVE vulnerabilities found in InPost Gallery, with AI-generated Chinese analysis, references, and POCs.
Vendor: Unknown
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-57889 | WordPress InPost Gallery Plugin <= 2.1.4.5 - Local File Inclusion Vulnerability CWE-98 | 7.5 | High | 2025-09-05 |
| CVE-2025-26903 | WordPress InPost Gallery plugin <= 2.1.4.3 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 | 4.3 | Medium | 2025-04-15 |
| CVE-2024-11002 | InPost Gallery <= 2.1.4.2 - Authenticated (Subscriber+) Arbitrary Shortcode Execution via inpost_gallery_get_shortcode_template CWE-94 | 6.3 | Medium | 2024-11-26 |
| CVE-2022-4063 | InPost Gallery < 2.1.4.1 - Unauthenticated LFI to RCE | 9.8 | - | 2022-12-19 |
All 4 known CVE vulnerabilities affecting InPost Gallery with full Chinese analysis, references, and POCs where available.