Product:

Gallery

(Bestwebsoft)
Repositories

Unknown:

This might be proprietary software.

#Vulnerabilities 3
Date Id Summary Products Score Patch Annotated
2023-04-17 CVE-2023-0764 The Gallery by BestWebSoft WordPress plugin before 4.7.0 does not perform proper sanitization of gallery information, leading to a Stored Cross-Site Scription vulnerability. The attacker must have at least the privileges of the Author role. Gallery 5.4
2023-04-17 CVE-2023-0765 The Gallery by BestWebSoft WordPress plugin before 4.7.0 does not properly escape values used in SQL queries, leading to an Blind SQL Injection vulnerability. The attacker must have at least the privileges of an Author, and the vendor's Slider plugin (https://wordpress.org/plugins/slider-bws/) must also be installed for this vulnerability to be exploitable. Gallery 8.8
2017-05-22 CVE-2017-2171 Cross-site scripting vulnerability in Captcha prior to version 4.3.0, Car Rental prior to version 1.0.5, Contact Form Multi prior to version 1.2.1, Contact Form prior to version 4.0.6, Contact Form to DB prior to version 1.5.7, Custom Admin Page prior to version 0.1.2, Custom Fields Search prior to version 1.3.2, Custom Search prior to version 1.36, Donate prior to version 2.1.1, Email Queue prior to version 1.1.2, Error Log Viewer prior to version 1.0.6, Facebook Button prior to version... Captcha, Car_rental, Contact_form, Contact_form_multi, Contact_form_to_db, Custom_admin_page, Custom_fields_search, Custom_search, Donate, Email_queue, Error_log_viewer, Facebook_button, Featured_posts, Gallery, Gallery_categories, Google_\+1, Google_adsense, Google_analytics, Google_captcha_\(Recaptcha\), Google_maps, Google_shortlink, Google_sitemap, Htaccess, Job_board, Latest_posts, Limit_attempts, Linkedin, Multilanguage, Pagination, Pdf_\&_print, Pinterest, Popular_posts, Portfolio, Post_to_csv, Profile_extra, Promobar, Quotes_and_tips, Re\-Attacher, Realty, Relevant_\-_related_posts, Sender, Smtp, Social_buttons_pack, Subscriber, Testimonials, Timesheet, Twitter_button, Updater, User_role, Visitors_online, Zendesk_help_center 6.1