cleantalk
Vulnerabilities and Security Researches

Portfolio & Image Gallery for WordPress | PowerFolio, CVE-2024-22150

CVE, Research URL

CVE-2024-22150

Home page URL

Security reports for Portfolio & Image Gallery for WordPress | PowerFolio

Application

Portfolio & Image Gallery for WordPress | PowerFolio

Published on
Feb 01, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PWR Plugins Portfolio & Image Gallery for WordPress | PowerFolio allows Stored XSS.This issue affects Portfolio & Image Gallery for WordPress | PowerFolio: from n/a through 3.1.
Affected versions
Min -, max 3.1.1.
Status
vulnerable
Previous vulnerability researches
Portfolio & Image Gallery for WordPress | PowerFolio (CVE-2024-22150) , Jun 07, 2024
Portfolio & Image Gallery for WordPress | PowerFolio (2dcc339fa5572c0b8975f48ffa24bcca0ae340a1) , Jun 07, 2024
Portfolio & Image Gallery for WordPress | PowerFolio (CVE-2022-4765) , Jun 07, 2024
Portfolio & Image Gallery for WordPress | PowerFolio (CVE-2022-4974) , Nov 15, 2024
Portfolio & Image Gallery for WordPress | PowerFolio (CVE-2025-7046) , Jul 05, 2025
New vulnerability
Printcart Web to Print Product Designer for WooCommerce (CVE-2025-24780) , Jul 05, 2025
bSecure – Your Universal Checkout (CVE-2025-52830) , Jul 05, 2025
DocCheck Login (CVE-2025-6786) , Jul 05, 2025
iFrame Images Gallery (CVE-2025-30969) , Jul 05, 2025
Video Gallery Block – Display your videos as a gallery in a professional way (CVE-2025-27326) , Jul 05, 2025