cleantalk
Vulnerabilities and Security Researches

MaxGalleria, CVE-2022-25603

CVE, Research URL

CVE-2022-25603

Home page URL

Security reports for MaxGalleria

Application

MaxGalleria

Published on
Mar 18, 2022
Research Description
Authenticated (author or higher user role) Stored Cross-Site Scripting (XSS) vulnerability discovered in MaxGalleria WordPress plugin (versions 6.2.5).
Affected versions
Min -, max 6.2.8.
Status
vulnerable
Previous vulnerability researches
MaxGalleria (CVE-2024-3581) , Jun 06, 2024
MaxGalleria (CVE-2022-25603) , Jun 06, 2024
MaxGalleria (CVE-2024-5970) , Jun 20, 2024
New vulnerability
Post Rating and Review (CVE-2025-6538) , Jun 27, 2025
WP Masonry & Infinite Scroll (CVE-2025-5488) , Jun 27, 2025
Modern Design Library (CVE-2025-5842) , Jun 27, 2025
FastBook – Responsive Appointment Booking and Scheduling System (CVE-2025-25173) , Jun 27, 2025
Zapier for WordPress (CVE-2025-50010) , Jun 27, 2025