Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Pluginus Subscribe
Filtered by product Inpost Gallery
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-4063 1 Pluginus 1 Inpost Gallery 2022-12-23 N/A 9.8 CRITICAL
The InPost Gallery WordPress plugin before 2.1.4.1 insecurely uses PHP's extract() function when rendering HTML views, allowing attackers to force the inclusion of malicious files & URLs, which may enable them to run code on servers.