Known Vulnerabilities for Nextgen Gallery by Imagely
Listed below are 10 of the newest known vulnerabilities associated with "Nextgen Gallery" by "Imagely".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-9059 json | NextGEN Gallery version prior to 4.2.1 are vulnerable to authenticated SQL injection via the 'orderby' parameter on the REST ... | Not Provided | 2026-05-20 | 2026-05-20 |
| CVE-2026-6566 json | The Photo Gallery, Sliders, Proofing and Themes – NextGEN Gallery plugin for WordPress is vulnerable to Insecure Direct Obj... | Not Provided | 2026-05-20 | 2026-05-20 |
| CVE-2026-1463 json | The Photo Gallery, Sliders, Proofing and Themes – NextGEN Gallery plugin for WordPress is vulnerable to Local File Inclusio... | Not Provided | 2026-03-18 | 2026-04-08 |
| CVE-2025-53224 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Koen Schuit NextGEN Gal... | Not Provided | 2025-08-28 | 2026-04-23 |
| CVE-2025-28869 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in shauno NextGEN Gallery ... | Not Provided | 2025-03-26 | 2026-04-23 |
| CVE-2025-25091 json | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in zackdesign NextGen Cool... | Not Provided | 2025-02-07 | 2026-04-23 |
| CVE-2024-3097 json | The WordPress Gallery Plugin – NextGEN Gallery plugin for WordPress is vulnerable to unauthorized access of data due to a m... | Not Provided | 2024-04-09 | 2026-04-08 |
| CVE-2023-48328 json | 8.8 - HIGH | 2023-11-30 | 2023-12-06 | |
| CVE-2023-3279 json | The WordPress Gallery Plugin WordPress plugin before 3.39 does not validate some block attributes before using them to genera... | 4.9 - MEDIUM | 2023-10-16 | 2023-11-07 |
| CVE-2023-3155 json | The WordPress Gallery Plugin WordPress plugin before 3.39 is vulnerable to Arbitrary File Read and Delete due to a lack of in... | 7.2 - HIGH | 2023-10-16 | 2023-11-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Imagely | Nextgen Gallery | 3.5.0 | |||
| Application | Imagely | Nextgen Gallery | 3.4.7 | |||
| Application | Imagely | Nextgen Gallery | 3.3.6 | |||
| Application | Imagely | Nextgen Gallery | 3.3.5 | |||
| Application | Imagely | Nextgen Gallery | 3.3.20 | |||
| Application | Imagely | Nextgen Gallery | 3.3.2 | |||
| Application | Imagely | Nextgen Gallery | 3.3.17.1 | |||
| Application | Imagely | Nextgen Gallery | 3.3.17 | |||
| Application | Imagely | Nextgen Gallery | 3.3.11 | |||
| Application | Imagely | Nextgen Gallery | 3.3.10 | |||
| Application | Imagely | Nextgen Gallery | 3.3.0 | |||
| Application | Imagely | Nextgen Gallery | 3.2.8 | |||
| Application | Imagely | Nextgen Gallery | 3.2.4 | |||
| Application | Imagely | Nextgen Gallery | 3.2.23 | |||
| Application | Imagely | Nextgen Gallery | 3.2.21 | |||
| Application | Imagely | Nextgen Gallery | 3.2.2 | |||
| Application | Imagely | Nextgen Gallery | 3.2.19 | |||
| Application | Imagely | Nextgen Gallery | 3.2.18 | |||
| Application | Imagely | Nextgen Gallery | 3.2.15 | |||
| Application | Imagely | Nextgen Gallery | 3.2.11 |