CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Wp Photo Album Plus Project: >> Wp Photo Album Plus >> 7.1.00 Security Vulnerabilities

CVE-2023-49813

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in J.N. Breetvelt a.K.A. OpaJaap WP Photo Album Plus allows Stored XSS.This issue affects WP Photo Album Plus: from n/a through 8.5.02.005.

CVSS Score

7.1

EPSS Score

0.002

Published

2023-12-14

CVE-2021-25115

The WP Photo Album Plus WordPress plugin before 8.0.10 was vulnerable to Stored Cross-Site Scripting (XSS). Error log content was handled improperly, therefore any user, even unauthenticated, could cause arbitrary javascript to be executed in the admin panel.

CVSS Score

6.4

EPSS Score

0.002

Published

2022-02-14

Page 1

Vulnerabilities

Vulnerable Software

Wp Photo Album Plus Project: >> Wp Photo Album Plus >> 7.1.00 Security Vulnerabilities

Products

Pricing

Contact Us