cleantalk
Vulnerabilities and Security Researches

Best WordPress Gallery Plugin – FooGallery, 297228e3-729b-487c-8cf5-2fc7548ea840

CVE, Research URL

297228e3-729b-487c-8cf5-2fc7548ea840

Home page URL

Security reports for Best WordPress Gallery Plugin – FooGallery

Application

Best WordPress Gallery Plugin – FooGallery

Published on
-
Research Description
Photo Gallery by FooGallery : Responsive Image Gallery, Masonry Gallery &amp; Carousel [foogallery] < 1.9.25 FooGallery &lt; 1.9.25 - Authenticated Cross-Site Scripting (XSS) The FooGallery WordPress plugin was found to be vulnerable to Authenticated Cross-Site Scripting (XSS). &quot;The vulnerability is caused by improper sanitization of user input in the image title or caption parameters in the gallery media upload editor. Thereby it can lead to an XSS in the default lightbox feature.&quot;
Affected versions
max 1.9.25.
Status
vulnerable
Previous vulnerability researches
Internal Linking for SEO traffic &amp; Ranking &#8211; Auto internal links (100% automatic) (bb4d8c6ce231464414d44706e8b51467551524ef) , Jun 16, 2026
Internal Linking for SEO traffic &amp; Ranking &#8211; Auto internal links (100% automatic) (6d8910c719b2a132ec93828cd37e418b19cac960) , Jun 16, 2026
Internal Linking for SEO traffic &amp; Ranking &#8211; Auto internal links (100% automatic) (CVE-2023-33999) , Jun 13, 2026
Internal Linking for SEO traffic &amp; Ranking &#8211; Auto internal links (100% automatic) (CVE-2024-11009) , Nov 28, 2024
Internal Linking for SEO traffic &amp; Ranking &#8211; Auto internal links (100% automatic) (CVE-2022-4974) , Nov 16, 2024
New vulnerability
Open Graph and Twitter Card Tags (d2a6c41972461397c4b4fbb3e37ca688b3cdcef4) , Jun 16, 2026
Open Graph and Twitter Card Tags (94d86780b701970829bbefba21941f3d698e59be) , Jun 16, 2026
Open Graph and Twitter Card Tags (891309bc-6353-4a91-bcfe-4864df258913) , Jun 16, 2026
WP SPID Italia (6d8910c719b2a132ec93828cd37e418b19cac960) , Jun 16, 2026
WP SPID Italia (8e47b49f82b0505ac2a6ff60c7eaa2e7bf6393e0) , Jun 16, 2026