CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-2597

The Visual Portfolio, Photo Gallery & Post Grid WordPress plugin before 2.19.0 does not have proper authorisation checks in some of its REST endpoints, allowing users with a role as low as contributor to call them and inject arbitrary CSS in arbitrary saved layouts

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 29.9%

CVSS Severity

CVSS v3 Score 5.4

References

Products affected by CVE-2022-2597

None » None » Version:

_photo_gallery_&_post_grid:1.0.0
None » None » Version:

_photo_gallery_&_post_grid:1.0.1
None » None » Version:

_photo_gallery_&_post_grid:1.1.0
None » None » Version:

_photo_gallery_&_post_grid:1.1.1
None » None » Version:

_photo_gallery_&_post_grid:1.1.2
None » None » Version:

_photo_gallery_&_post_grid:1.1.3
None » None » Version:

_photo_gallery_&_post_grid:1.1.4
None » None » Version:

_photo_gallery_&_post_grid:1.10.0
None » None » Version:

_photo_gallery_&_post_grid:1.11.0
None » None » Version:

_photo_gallery_&_post_grid:1.11.1
None » None » Version:

_photo_gallery_&_post_grid:1.12.0
None » None » Version:

_photo_gallery_&_post_grid:1.12.1
None » None » Version:

_photo_gallery_&_post_grid:1.12.2
None » None » Version:

_photo_gallery_&_post_grid:1.13.0
None » None » Version:

_photo_gallery_&_post_grid:1.13.1
None » None » Version:

_photo_gallery_&_post_grid:1.13.2
None » None » Version:

_photo_gallery_&_post_grid:1.14.0
None » None » Version:

_photo_gallery_&_post_grid:1.15.0
None » None » Version:

_photo_gallery_&_post_grid:1.15.1
None » None » Version:

_photo_gallery_&_post_grid:1.16.0
None » None » Version:

_photo_gallery_&_post_grid:1.16.1
None » None » Version:

_photo_gallery_&_post_grid:1.16.2
None » None » Version:

_photo_gallery_&_post_grid:1.2.0
None » None » Version:

_photo_gallery_&_post_grid:1.2.1
None » None » Version:

_photo_gallery_&_post_grid:1.3.0
None » None » Version:

_photo_gallery_&_post_grid:1.4.0
None » None » Version:

_photo_gallery_&_post_grid:1.4.1
None » None » Version:

_photo_gallery_&_post_grid:1.4.2
None » None » Version:

_photo_gallery_&_post_grid:1.4.3
None » None » Version:

_photo_gallery_&_post_grid:1.5.0
None » None » Version:

_photo_gallery_&_post_grid:1.6.0
None » None » Version:

_photo_gallery_&_post_grid:1.6.1
None » None » Version:

_photo_gallery_&_post_grid:1.6.2
None » None » Version:

_photo_gallery_&_post_grid:1.6.3
None » None » Version:

_photo_gallery_&_post_grid:1.6.4
None » None » Version:

_photo_gallery_&_post_grid:1.6.5
None » None » Version:

_photo_gallery_&_post_grid:1.7.0
None » None » Version:

_photo_gallery_&_post_grid:1.7.1
None » None » Version:

_photo_gallery_&_post_grid:1.7.2
None » None » Version:

_photo_gallery_&_post_grid:1.8.0
None » None » Version:

_photo_gallery_&_post_grid:1.8.1
None » None » Version:

_photo_gallery_&_post_grid:1.8.2
None » None » Version:

_photo_gallery_&_post_grid:1.9.0
None » None » Version:

_photo_gallery_&_post_grid:1.9.1
None » None » Version:

_photo_gallery_&_post_grid:1.9.2
None » None » Version:

_photo_gallery_&_post_grid:1.9.3
None » None » Version:

_photo_gallery_&_post_grid:2.0.0
None » None » Version:

_photo_gallery_&_post_grid:2.0.1
None » None » Version:

_photo_gallery_&_post_grid:2.1.0
None » None » Version:

_photo_gallery_&_post_grid:2.10.0
None » None » Version:

_photo_gallery_&_post_grid:2.10.1
None » None » Version:

_photo_gallery_&_post_grid:2.10.2
None » None » Version:

_photo_gallery_&_post_grid:2.10.3
None » None » Version:

_photo_gallery_&_post_grid:2.10.4
None » None » Version:

_photo_gallery_&_post_grid:2.10.5
None » None » Version:

_photo_gallery_&_post_grid:2.11.0
None » None » Version:

_photo_gallery_&_post_grid:2.11.1
None » None » Version:

_photo_gallery_&_post_grid:2.12.0
None » None » Version:

_photo_gallery_&_post_grid:2.12.1
None » None » Version:

_photo_gallery_&_post_grid:2.13.0
None » None » Version:

_photo_gallery_&_post_grid:2.13.1
None » None » Version:

_photo_gallery_&_post_grid:2.13.2
None » None » Version:

_photo_gallery_&_post_grid:2.14.0
None » None » Version:

_photo_gallery_&_post_grid:2.14.1
None » None » Version:

_photo_gallery_&_post_grid:2.15.0
None » None » Version:

_photo_gallery_&_post_grid:2.15.1
None » None » Version:

_photo_gallery_&_post_grid:2.15.2
None » None » Version:

_photo_gallery_&_post_grid:2.15.3
None » None » Version:

_photo_gallery_&_post_grid:2.15.4
None » None » Version:

_photo_gallery_&_post_grid:2.15.5
None » None » Version:

_photo_gallery_&_post_grid:2.15.6
None » None » Version:

_photo_gallery_&_post_grid:2.16.0
None » None » Version:

_photo_gallery_&_post_grid:2.17.0
None » None » Version:

_photo_gallery_&_post_grid:2.17.1
None » None » Version:

_photo_gallery_&_post_grid:2.18.0
None » None » Version:

_photo_gallery_&_post_grid:2.2.0
None » None » Version:

_photo_gallery_&_post_grid:2.3.0
None » None » Version:

_photo_gallery_&_post_grid:2.4.0
None » None » Version:

_photo_gallery_&_post_grid:2.5.0
None » None » Version:

_photo_gallery_&_post_grid:2.6.0
None » None » Version:

_photo_gallery_&_post_grid:2.6.1
None » None » Version:

_photo_gallery_&_post_grid:2.7.0
None » None » Version:

_photo_gallery_&_post_grid:2.7.1
None » None » Version:

_photo_gallery_&_post_grid:2.8.0
None » None » Version:

_photo_gallery_&_post_grid:2.8.1
None » None » Version:

_photo_gallery_&_post_grid:2.8.2
None » None » Version:

_photo_gallery_&_post_grid:2.9.0
None » None » Version:

_photo_gallery_&_post_grid:2.9.1
Visualportfolio » Visual Portfolio » Version: Any

cpe:2.3:a:visualportfolio:visual_portfolio

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-2597

Products

Pricing

Contact Us