Vulnerabilidades em fooplugins
21 resultadosCVE-2023-29439HIGHWordPress FooGallery Plugin <= 2.2.35 is vulnerable to Cross Site Scripting (XSS)EPSS 1.7%CVE-2024-0604MEDIUMBest WordPress Gallery Plugin – FooGallery <= 2.4.7 -Authenticated(Administrator+) Stored Cross-Site Scripting via settingsEPSS 0.6%CVE-2021-24357—FooGallery < 2.0.35 - Authenticated Stored Cross-Site ScriptingEPSS 0.6%CVE-2024-2081MEDIUMFooGallery <= 2.4.14 - Authenticated (Author+) Stored Cross-Site ScriptingEPSS 0.6%CVE-2024-2122MEDIUMFooGallery <= 2.4.15 - Authenticated (Contributor+) Stored Cross-Site Scripting via Gallery Custom URLEPSS 0.5%CVE-2022-4974MEDIUMFreemius SDK <= 2.4.2 - Missing Authorization ChecksEPSS 0.4%CVE-2023-6747MEDIUMFooGallery Premium <= 2.3.3 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.4%CVE-2023-44244HIGHWordPress FooGallery Plugin <= 2.2.44 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2024-2471MEDIUMFooGallery <= 2.4.14 - Authenticated (Author+) Stored Cross-Site Scripting via Image Attachment FieldsEPSS 0.3%CVE-2024-12114MEDIUMFooGallery – Responsive Photo Gallery, Image Viewer, Justified, Masonry & Carousel <= 2.4.29 - Insecure Direct Object Reference to Authenticated (Custom+) Arbitrary Post/Page UpdatesEPSS 0.3%CVE-2024-5668MEDIUMLightbox & Modal Popup WordPress Plugin – FooBox <= 2.7.28 - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via HTML Data AttributesEPSS 0.3%CVE-2024-13362MEDIUMFreemius <= 2.10.1 - Reflected DOM-Based Cross-Site Scripting via url ParameterEPSS 0.3%CVE-2024-12119MEDIUMFooGallery – Responsive Photo Gallery, Image Viewer, Justified, Masonry & Carousel <= 2.4.29 - Authenticated (Custom+) Stored Cross-Site Scripting via Album Title SizeEPSS 0.2%CVE-2025-32139MEDIUMWordPress Lightbox & Modal Popup WordPress Plugin – FooBox plugin <= 2.7.33 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.2%CVE-2023-44233MEDIUMWordPress FooGallery Plugin <= 2.2.44 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.2%CVE-2025-15524MEDIUMGallery by FooGallery <= 3.1.9 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Gallery Metadata ExposureEPSS 0.2%CVE-2025-6068MEDIUMFooGallery – Responsive Photo Gallery, Image Viewer, Justified, Masonry & Carousel <= 2.4.31 - Authenticated (Contributor+) DOM-Based Stored Cross-Site ScriptingEPSS 0.2%CVE-2026-9134MEDIUMPhoto Gallery by FooGallery : Responsive Image Gallery, Masonry Gallery & Carousel <= 3.1.31 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'custom_attribute_key' Shortcode ParameterEPSS 0.2%CVE-2026-25363MEDIUMWordPress FooGallery plugin <= 3.1.11 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-5537MEDIUMLightbox & Modal Popup WordPress Plugin – FooBox <= 2.7.34 - Authenticated (Author+) Stored Cross-Site ScriptingEPSS 0.2%