Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2025-0613

The Photo Gallery by 10Web WordPress plugin before 1.8.34 does not sanitised and escaped comment added on images by unauthenticated users, leading to an Unauthenticated Stored-XSS attack when comments are displayed

  • Published: Mar 31, 2025
  • Updated: May 14, 2025
  • CVE: CVE-2025-0613
  • Exploit:

No technical information available.

CWEs:

OWASP TOP 10:

Software From Fixed in
10web / photo_gallery - 1.8.34