cleantalk
Vulnerabilities and Security Researches

Photo Gallery by 10Web – Mobile-Friendly Image Gallery, CVE-2025-0613

CVE, Research URL

CVE-2025-0613

Home page URL

Security reports for Photo Gallery by 10Web – Mobile-Friendly Image Gallery

Application

Photo Gallery by 10Web – Mobile-Friendly Image Gallery

Published on
Mar 31, 2025
Research Description
The Photo Gallery by 10Web WordPress plugin before 1.8.34 does not sanitised and escaped comment added on images by unauthenticated users, leading to an Unauthenticated Stored-XSS attack when comments are displayed
Affected versions
Min -, max 1.8.34.
Status
vulnerable
Previous vulnerability researches
Tayori Form Plugin (CVE-2025-46437) , May 05, 2025
New vulnerability
WP MultiTasking – WP Utilities (CVE-2024-6860) , May 08, 2025
WP MultiTasking – WP Utilities (CVE-2024-6857) , May 08, 2025
PeproDev Ultimate Profile Solutions (CVE-2025-3924) , May 08, 2025
PeproDev Ultimate Profile Solutions (CVE-2025-3921) , May 08, 2025
PeproDev Ultimate Profile Solutions (CVE-2025-3844) , May 08, 2025