Wp Social Feed Gallery
1 CVEs
product
Monthly
The insta-gallery plugin before 2.4.8 for WordPress has no nonce validation for qligg_dismiss_notice or qligg_form_item_delete. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
WordPress
CSRF
Wp Social Feed Gallery
NVD
CVSS 3.0
8.8
EPSS
0.7%
EPSS 1%
CVSS 8.8
HIGH
This Week
The insta-gallery plugin before 2.4.8 for WordPress has no nonce validation for qligg_dismiss_notice or qligg_form_item_delete. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
WordPress
CSRF
Wp Social Feed Gallery
NVD