Photo Gallery, Images, Slider in Rbs Image Gallery

Wordfence Intelligence > Vulnerability Database > WordPress Plugins > Photo Gallery, Images, Slider in Rbs Image Gallery

Information

Software Type	Plugin
Software Slug	robo-gallery (view on wordpress.org)
Software Status	Active
Software Author	robosoft
Software Website	robosoft.co
Software Downloads	1,849,066
Software Active Installs	50,000
Software Record Last Updated	October 2, 2023

6 vulnerabilities

Robo Gallery <= 3.2.15 - Authenticated(Administrator+) Stored Cross-Site Scripting

4.4

CVE-2023-3499

Aug 15, 2023

Researcher: Felipe Restrepo Rodriguez

Robo Gallery <= 3.2.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcodes

6.4

CVE-2023-27620

Mar 13, 2023

Researcher: Rafshanzani Suhada

Robo Gallery <= 3.2.9 - Cross-Site Request Forgery via getPluginStatus

4.3

CVE-2022-45804

Feb 2, 2023

Researcher: Lana Codes

Robo Gallery Plugin <= 3.2.11 - Cross-Site Request Forgery

4.3

CVE-2023-24414

Jan 30, 2023

Researcher: thiennv

Photo Gallery, Images, Slider in Rbs Image Gallery <= 3.2.9 - Missing Authorization

8.1

CVE-2022-45841

Dec 12, 2022

Researcher: Tien Nguyen Ahn

Photo Gallery, Images, Slider in Rbs Image Gallery <= 2.0.14 - Remote Code Execution

9.8

CVE ID Unknown

Apr 12, 2016

Researcher: Iran Cyber Security Group

Title	CVE ID	CVSS	Researchers	Date
Robo Gallery <= 3.2.15 - Authenticated(Administrator+) Stored Cross-Site Scripting	CVE-2023-3499	4.4	Felipe Restrepo Rodriguez	August 15, 2023
Robo Gallery <= 3.2.12 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcodes	CVE-2023-27620	6.4	Rafshanzani Suhada	March 13, 2023
Robo Gallery <= 3.2.9 - Cross-Site Request Forgery via getPluginStatus	CVE-2022-45804	4.3	Lana Codes	February 2, 2023
Robo Gallery Plugin <= 3.2.11 - Cross-Site Request Forgery	CVE-2023-24414	4.3	thiennv	January 30, 2023
Photo Gallery, Images, Slider in Rbs Image Gallery <= 3.2.9 - Missing Authorization	CVE-2022-45841	8.1	Tien Nguyen Ahn	December 12, 2022
Photo Gallery, Images, Slider in Rbs Image Gallery <= 2.0.14 - Remote Code Execution		9.8	Iran Cyber Security Group	April 12, 2016

All the threat data shared in this database is powered by Wordfence Intelligence Enterprise.
Interested in integrating this data into your platform or network?
Contact us now to discuss API access to our Wordfence Intelligence Enterprise Data Feeds.

Inquire Now

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation