Avolume

**Name of the Vulnerable Software and Affected Versions** The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin versions prior to 1.5.75 **Description** The issue arises from the plugin's failure to ensure that uploaded SVG files added to a gallery do not contain malicious content. This allows users who can add images to the gallery to upload an SVG file containing JavaScript code. When the image is accessed directly, for example in the /wp-content/uploads/photo-gallery/ folder, the JavaScript code is executed, leading to a Cross-Site Scripting (XSS) issue. **Recommendations** For versions prior to 1.5.75, update to version 1.5.75 or later to resolve the issue. As a temporary workaround, consider restricting the ability for users to upload SVG files to the gallery until the update is applied. Additionally, restrict access to the /wp-content/uploads/photo-gallery/ folder to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin versions prior to 1.5.75 **Description** The issue allows high privilege users to upload files outside of the intended uploads folder due to a path traversal vector, potentially leading to unauthorized file system access. **Recommendations** For versions prior to 1.5.75, update to version 1.5.75 or later to resolve the issue. As a temporary workaround, consider restricting file upload capabilities to low-privilege users until the update is applied.

**Name of the Vulnerable Software and Affected Versions** FooGallery WordPress plugin versions prior to 2.0.35 **Description** The issue arises from the Custom CSS field of each gallery not being properly sanitised or validated before being output in the page where the gallery is embedded, leading to a stored Cross-Site Scripting issue. **Recommendations** For versions prior to 2.0.35, update to version 2.0.35 or later to resolve the issue. As a temporary workaround, consider disabling the Custom CSS field for each gallery until the update is applied. Restrict access to the gallery embedding feature to minimize the risk of exploitation. Avoid using the Custom CSS field in the affected plugin until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** The Photo Gallery by 10Web - Mobile-Friendly Image Gallery WordPress plugin versions prior to 1.5.67 **Description** The issue arises from improper sanitization of the gallery title, allowing high-privilege users to create a title with an XSS payload. This payload is triggered when another user views the gallery list or the affected gallery in the admin dashboard. The problem is attributed to an incomplete fix of a previous issue. **Recommendations** For versions prior to 1.5.67, update to version 1.5.67 or later to resolve the issue.