cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-12853,https://securityvulnerability.io/vulnerability/CVE-2024-12853,Arbitrary File Upload Vulnerability in Modula Image Gallery Plugin for WordPress,"The Modula Image Gallery plugin for WordPress contains a serious vulnerability due to inadequate file type validation in its zip upload feature. This issue affects all versions up to and including 2.11.10, allowing authenticated users with Author-level access and above to upload potentially malicious files to the server. Such capability may lead to remote code execution, compromising site integrity and security.",Wordpress,Modula Image Gallery,8.8,HIGH,0.0005000000237487257,false,,false,false,false,false,false,false,2025-01-08T09:18:36.690Z,0
CVE-2022-41135,https://securityvulnerability.io/vulnerability/CVE-2022-41135,WordPress Modula plugin <= 2.6.9 - Unauth. Plugin Settings Change vulnerability,Unauth. Plugin Settings Change vulnerability in Modula plugin <= 2.6.9 on WordPress.,Wordpress,Modula Image Gallery (WordPress Plugin),6.5,MEDIUM,0.0005699999746866524,false,,false,false,false,,false,false,2022-11-18T23:15:00.000Z,0
CVE-2020-9003,https://securityvulnerability.io/vulnerability/CVE-2020-9003,,A stored XSS vulnerability exists in the Modula Image Gallery plugin before 2.2.5 for WordPress. Successful exploitation of this vulnerability would allow an authenticated low-privileged user to inject arbitrary JavaScript code that is viewed by other users.,Wordpress,Modula Image Gallery,5.4,MEDIUM,0.0007900000200606883,false,,false,false,false,,false,false,2020-02-20T21:52:32.000Z,0