cleantalk
Vulnerabilities and Security Researches

Customizable WordPress Gallery Plugin – Modula Image Gallery, 2e7dac33a01aab43c7f0d30e3b389b751ce084d0

CVE, Research URL

2e7dac33a01aab43c7f0d30e3b389b751ce084d0

Home page URL

Security reports for Customizable WordPress Gallery Plugin – Modula Image Gallery

Application

Customizable WordPress Gallery Plugin – Modula Image Gallery

Published on
Sep 12, 2023
Research Description
Modula Image Gallery &#8211; Photo Grid &amp; Video Gallery [modula-best-grid-gallery] < 2.7.5 WordPress Modula Image Gallery Plugin < 2.7.5 is vulnerable to Broken Access Control Update the WordPress Modula Image Gallery plugin to the latest available version (at least 2.7.5). Unknown discovered and reported this Broken Access Control vulnerability in WordPress Modula Image Gallery Plugin. A broken access control issue refers to a missing authorization, authentication or nonce token check in a function that could lead to an unprivileged user to executing a certain higher privileged action. This vulnerability has been fixed in version 2.7.5.
Affected versions
max 2.7.5.
Status
vulnerable
Previous vulnerability researches
Customizable WordPress Gallery Plugin &#8211; Modula Image Gallery (CVE-2026-39481) , May 02, 2026
Customizable WordPress Gallery Plugin &#8211; Modula Image Gallery (CVE-2020-9003) , Jun 07, 2024
Customizable WordPress Gallery Plugin &#8211; Modula Image Gallery (CVE-2024-9416) , Apr 04, 2025
Customizable WordPress Gallery Plugin &#8211; Modula Image Gallery (CVE-2022-41135) , Jun 07, 2024
Customizable WordPress Gallery Plugin &#8211; Modula Image Gallery (CVE-2024-12853) , Jan 08, 2025
New vulnerability
WooCommerce Digital Signature (CVE-2026-52694) , Jun 17, 2026
Permalink Manager Lite (CVE-2026-8494) , Jun 17, 2026
Static Block (CVE-2026-10780) , Jun 17, 2026
wpDataTables &#8211; WordPress Data Table, Dynamic Tables &amp; Table Charts Plugin (CVE-2026-49080) , Jun 16, 2026
The Events Calendar (CVE-2026-49772) , Jun 16, 2026