🧹It's time for some spring cleaning! All researchers earn over 6.25x our normal bounty rates, through May 27th, 2024, when Wordfence handles responsible disclosure for our Spring Cleaning Bug Extravaganza! Learn more about our bug bounty program
Register as a researcher and submit your vulnerabilities today!

Image Gallery - Responsive Photo Gallery

Wordfence Intelligence > Vulnerability Database > WordPress Plugins > Image Gallery - Responsive Photo Gallery

Information

Software Type	Plugin
Software Slug	gallery-images (view on wordpress.org)
Software Status	Removed
Software Author	Huge IT
Software Website	wordpress.org
Software Record Last Updated	April 16, 2024

7 Vulnerabilities

Image Gallery - Responsive Photo Gallery < 2.0.6 - Authenticated Stored Cross-Site Scripting

5.5

CVE ID Unknown

Nov 23, 2016

Researcher: Sipke Mellema

Image Gallery - Responsive Photo Gallery <= 1.9.57 - Cross-Site Request Forgery

8.8

CVE ID Unknown

May 19, 2016

Researchers:

Huge-IT gallery-images <= 1.8.9 - SQL Injection

9.8

CVE-2016-11018

May 10, 2016

Researchers:

Image Gallery – Responsive Photo Gallery <= 1.7.0 - Reflected Cross-Site Scripting via linkbutton

6.1

CVE ID Unknown

Feb 8, 2016

Researcher: Kacper Szurek

Image Gallery - Responsive Photo Gallery <= 1.5.5 - Reflected Cross-Site Scripting

6.1

CVE ID Unknown

Aug 20, 2015

Researcher: Marcin Probola

Image Gallery - Responsive Photo Gallery <= 1.7.0 - Reflected Cross-Site Scripting via thumbtext

6.1

CVE ID Unknown

Mar 12, 2015

Researcher: Kacper Szurek

Image Gallery - Responsive Photo Gallery <= 1.0.7 - SQL Injection

8.8

CVE-2014-7153

Sep 2, 2014

Researcher: Claudio Viviani

Title	Status	CVE ID	CVSS	Researchers	Date
Image Gallery - Responsive Photo Gallery < 2.0.6 - Authenticated Stored Cross-Site Scripting	Patched		5.5	Sipke Mellema	November 23, 2016
Image Gallery - Responsive Photo Gallery <= 1.9.57 - Cross-Site Request Forgery	Patched		8.8		May 19, 2016
Huge-IT gallery-images <= 1.8.9 - SQL Injection	Patched	CVE-2016-11018	9.8		May 10, 2016
Image Gallery – Responsive Photo Gallery <= 1.7.0 - Reflected Cross-Site Scripting via linkbutton	Patched		6.1	Kacper Szurek	February 8, 2016
Image Gallery - Responsive Photo Gallery <= 1.5.5 - Reflected Cross-Site Scripting	Patched		6.1	Marcin Probola	August 20, 2015
Image Gallery - Responsive Photo Gallery <= 1.7.0 - Reflected Cross-Site Scripting via thumbtext	Patched		6.1	Kacper Szurek	March 12, 2015
Image Gallery - Responsive Photo Gallery <= 1.0.7 - SQL Injection	Patched	CVE-2014-7153	8.8	Claudio Viviani	September 2, 2014

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation