Album and Image Gallery with Lightbox – Flagallery Photo Portfolio Vulnerabilities

The Album and Image Gallery with Lightbox – Flagallery Photo Portfolio WordPress plugin through 6.1.2 does not sanitise and escape some of its gallery settings, which could allow high privilege users to perform Cross-Site scripting attacks even when the unfiltered_html capability...

The Grand Flagallery plugin before 4.25 for WordPress allows remote attackers to obtain the installation path via a request to (1) flagallery-skins/banner_widget_default/gallery.php or (2) flash-album-gallery/skins/banner_widget_default/gallery.php.

The Album and Image Gallery with Lightbox – Flagallery Photo Portfolio plugin for WordPress is vulnerable to generic SQL Injection via the 'pid' parameter in the 'lib/hitcounter.php' in versions up to, and including, 0.59 due to insufficient escaping on the user-supplied paramete...

Cross-site scripting (XSS) vulnerability in wp-admin/admin.php in the GRAND FlAGallery plugin before 2.72 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter in a flag-manage-gallery action.

The Album and Image Gallery with Lightbox – Flagallery Photo Portfolio plugin for WordPress is vulnerable to SQL Injection via the ' $id' variable in the lib/shortcodes.php file in versions up to, and including, 2.55 due to insufficient escaping on the user supplied parameter and...

The Album and Image Gallery with Lightbox – Flagallery Photo Portfolio plugin for WordPress is vulnerable to Sensitive Data Exposure in versions up to, and including, 2.52 via the 'dir' parameter in the admin/ajax.php file, the 'want2read' parameter in the admin/news.php file, an...

The Album and Image Gallery with Lightbox – Flagallery Photo Portfolio plugin for WordPress is vulnerable to generic SQL Injection via the 'description' parameter in the admin/manage.php file in versions up to 2.53 due to insufficient escaping on the user supplied parameter and l...

The Album and Image Gallery with Lightbox – Flagallery Photo Portfolio plugin for WordPress is vulnerable to arbitrary file deletion via path traversal in versions up to, and including, 3.0.1 via the 'delete' parameter. This makes it possible for authenticated attackers to delete...

The Album and Image Gallery with Lightbox – Flagallery Photo Portfolio plugin for WordPress is vulnerable to SQL Injection via the 'orderby' parameter in the lib/shortcodes.php file in versions up to, and including, 2.00 due to insufficient escaping on the user supplied parameter...

The Album and Image Gallery with Lightbox – Flagallery Photo Portfolio plugin for WordPress is vulnerable to SQL Injection via the ‘form’ parameter in the admin/ajax.php file in versions up to, and including, 2.00 due to insufficient escaping on the user supplied parameter and la...

The Album and Image Gallery with Lightbox – Flagallery Photo Portfolio plugin for WordPress is vulnerable to arbitrary file modification in versions up to, and including, 2.00. This is due to unsanitized user input on the 'settingsXML', and 'mainXML' parameters in the admin/skin_...

The Album and Image Gallery with Lightbox – Flagallery Photo Portfolio plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'skin' parameter in versions up to, and including, 1.72 due to insufficient input sanitization and output escaping. This makes it po...