Vulnerabilities > Wppa
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-11-10 | CVE-2024-10958 | Code Injection vulnerability in Wppa WP Photo Album Plus The The WP Photo Album Plus plugin for WordPress is vulnerable to arbitrary shortcode execution via getshortcodedrenderedfenodelay AJAX action in all versions up to, and including, 8.8.08.007 . | 7.3 |
2024-07-22 | CVE-2024-37416 | Cross-site Scripting vulnerability in Wppa WP Photo Album Plus Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in J.N. | 6.1 |
2023-12-19 | CVE-2023-49812 | Unspecified vulnerability in Wppa WP Photo Album Plus Authorization Bypass Through User-Controlled Key vulnerability in J.N. | 7.5 |