Lucene search
HistoryJun 11, 2024 - 3:16 p.m.
CVE-2024-35628
cve-2024-35628
missing authorization
photo gallery
10web
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
5.1 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.2%
Missing Authorization vulnerability in Photo Gallery Team Photo Gallery by 10Web.This issue affects Photo Gallery by 10Web: from n/a through 1.8.25.
Affected configurations
Node
photo_gallery_teamphoto_gallery_by_10webRangeβ€1.8.25
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "photo-gallery",
"product": "Photo Gallery by 10Web",
"vendor": "Photo Gallery Team",
"versions": [
{
"changes": [
{
"at": "1.8.26",
"status": "unaffected"
}
],
"lessThanOrEqual": "1.8.25",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-35628
2024-06-11 15:16:07
wpvulndb
wpvulndb
Photo Gallery by 10Web <= 1.8.25 - Missing Authorization
2024-06-18 00:00:00
cvelist
cvelist
vulnrichment
vulnrichment
wordfence
wordfence
4.3 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
5.1 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.2%
Related for CVE-2024-35628