exploitDog

CVE-2025-49394

Опубликовано: 06 нояб. 2025

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

Missing Authorization vulnerability in bPlugins Image Gallery block – Create and display photo gallery/photo album. 3d-image-gallery allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Image Gallery block – Create and display photo gallery/photo album.: from n/a through <= 1.0.7.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/3d-image-gallery/vulnerability/wordpress-image-gallery-block-create-and-display-photo-gallery-photo-album-plugin-1-0-7-broken-authentication-vulnerability?_s_id=cve

EPSS

Процентиль: 18%

0.00058

Низкий

8.8 High

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-mrv4-5c7q-v4v8

CVSS3: 8.8

github

3 месяца назад

Missing Authorization vulnerability in bPlugins Image Gallery block – Create and display photo gallery/photo album. 3d-image-gallery allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Image Gallery block – Create and display photo gallery/photo album.: from n/a through <= 1.0.7.

EPSS

Процентиль: 18%

0.00058

Низкий

8.8 High

CVSS3

Дефекты

CWE-862