Vulnerabilities > Wpdevart > Gallery > 1.4.7
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-18 | CVE-2023-45630 | Cross-site Scripting vulnerability in Wpdevart Gallery Unauth. | 6.1 |
| 2022-07-04 | CVE-2022-1946 | Cross-site Scripting vulnerability in Wpdevart Gallery The Gallery WordPress plugin before 2.0.0 does not sanitise and escape a parameter before outputting it back in the response of an AJAX action (available to both unauthenticated and authenticated users), leading to a Reflected Cross-Site Scripting issue | 4.3 |