Vulnerabilities > Wppa

DATE CVE VULNERABILITY TITLE RISK
2024-11-10 CVE-2024-10958 Code Injection vulnerability in Wppa WP Photo Album Plus
The The WP Photo Album Plus plugin for WordPress is vulnerable to arbitrary shortcode execution via getshortcodedrenderedfenodelay AJAX action in all versions up to, and including, 8.8.08.007 .
network
low complexity
wppa CWE-94
7.3
2024-07-22 CVE-2024-37416 Cross-site Scripting vulnerability in Wppa WP Photo Album Plus
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in J.N.
network
low complexity
wppa CWE-79
6.1
2023-12-19 CVE-2023-49812 Unspecified vulnerability in Wppa WP Photo Album Plus
Authorization Bypass Through User-Controlled Key vulnerability in J.N.
network
low complexity
wppa
7.5