Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total2

Critical0

High0

Medium2

Search Severity Year Type Sort Order

Reset

Showing 1-2 of 2 records

Threat Entry Updated 2024-11-21

CVE-2022-2543 - Visual Portfolio Photo Gallery Post Grid Plugin

The Visual Portfolio, Photo Gallery & Post Grid WordPress plugin before 2.18.0 does not have proper authorisation checks in some of its REST endpoints, allowing unauthenticated users to call them and inject arbitrary CSS in arbitrary saved layouts

PLUGIN Visual Portfolio Photo Gallery Post Grid

CVE-2022-2543

MEDIUM CVSS 6.1 2022-09-05

Risk Score

Open Full Technical Breakdown

Threat Entry Updated 2024-11-21

CVE-2022-2597 - Visual Portfolio Photo Gallery Post Grid Plugin

The Visual Portfolio, Photo Gallery & Post Grid WordPress plugin before 2.19.0 does not have proper authorisation checks in some of its REST endpoints, allowing users with a role as low as contributor to call them and inject arbitrary CSS in arbitrary saved layouts

PLUGIN Visual Portfolio Photo Gallery Post Grid

CVE-2022-2597

MEDIUM CVSS 5.4 2022-09-05

Risk Score

Open Full Technical Breakdown

Blog

"Prevention is cheaper than a breach"

Threat Database

CVE-2022-2543 - Visual Portfolio Photo Gallery Post Grid Plugin

CVE-2022-2597 - Visual Portfolio Photo Gallery Post Grid Plugin

Company Links

Contact Us