All 4 CVE vulnerabilities found in Photo Gallery by Ays – Responsive Image Gallery, with AI-generated Chinese analysis, references, and POCs.
Vendor: Ays Pro
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2025-13685 | Photo Gallery by Ays <= 6.4.8 - Cross-Site Request Forgery to Bulk Actions CWE-352 | 4.3 | Medium | 2025-12-02 |
| CVE-2023-39917 | WordPress Photo Gallery by Ays Plugin <= 5.2.6 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352 | 4.3 | Medium | 2023-10-03 |
| CVE-2023-32107 | WordPress Photo Gallery by Ays Plugin <= 5.1.3 is vulnerable to Cross Site Scripting (XSS) CWE-79 | 7.1 | High | 2023-08-18 |
| CVE-2021-24462 | Photo Gallery by Ays - Responsive Image Gallery < 4.4.4 - Authenticated Blind SQL Injections CWE-89 | 8.8 | - | 2021-08-02 |
All 4 known CVE vulnerabilities affecting Photo Gallery by Ays – Responsive Image Gallery with full Chinese analysis, references, and POCs where available.