Known Vulnerabilities for products from 10Web
Listed below are 20 of the newest known vulnerabilities associated with the vendor "10Web".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-27360 | Not Provided | 2026-02-19 | 2026-04-01 | |
| CVE-2025-48341 | Not Provided | 2025-05-19 | 2026-04-01 | |
| CVE-2024-44043 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 10Web Photo Gallery by ... | Not Provided | 2024-10-06 | 2026-04-01 |
| CVE-2022-0212 | The SpiderCalendar WordPress plugin through 1.5.65 does not sanitise and escape the callback parameter before outputting it b... | 6.1 - MEDIUM | 2022-02-14 | 2022-02-19 |
| CVE-2022-0169 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-03-14 | 2022-03-21 |
| CVE-2021-25047 | The 10Web Social Photo Feed WordPress plugin before 1.4.29 was affected by a reflected Cross-Site Scripting (XSS) vulnerabili... | 6.1 - MEDIUM | 2022-01-10 | 2022-01-18 |
| CVE-2021-25041 | The Photo Gallery by 10Web WordPress plugin before 1.5.68 is vulnerable to Reflected Cross-Site Scripting (XSS) issues via th... | 6.1 - MEDIUM | 2021-12-06 | 2021-12-07 |
| CVE-2021-24526 | The Form Maker by 10Web – Mobile-Friendly Drag & Drop Contact Form Builder WordPress plugin before 1.13.60 does not escape ... | 5.4 - MEDIUM | 2021-08-16 | 2023-11-07 |
| CVE-2021-24363 | The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin before 1.5.75 did not ensure that uploaded file... | 4.9 - MEDIUM | 2021-08-16 | 2023-11-07 |
| CVE-2021-24362 | The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin before 1.5.75 did not ensure that uploaded SVG ... | 6.1 - MEDIUM | 2021-08-16 | 2023-11-07 |
| CVE-2021-24310 | The Photo Gallery by 10Web - Mobile-Friendly Image Gallery WordPress plugin before 1.5.67 did not properly sanitise the galle... | 4.8 - MEDIUM | 2021-06-01 | 2021-06-09 |
| CVE-2021-24291 | The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin before 1.5.69 was vulnerable to Reflected Cross... | 6.1 - MEDIUM | 2021-05-14 | 2023-11-07 |
| CVE-2021-24139 | Unvalidated input in the Photo Gallery (10Web Photo Gallery) WordPress plugin, versions before 1.5.55, leads to SQL injection... | 9.8 - CRITICAL | 2021-03-18 | 2021-03-22 |
| CVE-2021-24132 | The Slider by 10Web WordPress plugin, versions before 1.2.36, in the bulk_action, export_full and save_slider_db functionalit... | 8.8 - HIGH | 2021-03-18 | 2021-03-24 |
| CVE-2020-9335 | Multiple stored XSS vulnerabilities exist in the 10Web Photo Gallery plugin before 1.5.46 WordPress. Successful exploitation ... | 4.8 - MEDIUM | 2020-02-25 | 2020-02-25 |
| CVE-2019-16119 | SQL injection in the photo-gallery (10Web Photo Gallery) plugin before 1.5.35 for WordPress exists via the admin/controllers/... | 9.8 - CRITICAL | 2019-09-08 | 2023-02-23 |
| CVE-2019-16118 | Cross site scripting (XSS) in the photo-gallery (10Web Photo Gallery) plugin before 1.5.35 for WordPress exists via admin/con... | 6.1 - MEDIUM | 2019-09-08 | 2023-02-23 |
| CVE-2019-16117 | Cross site scripting (XSS) in the photo-gallery (10Web Photo Gallery) plugin before 1.5.35 for WordPress exists via admin/mod... | 6.1 - MEDIUM | 2019-09-08 | 2023-02-23 |
| CVE-2019-14798 | The 10Web Photo Gallery plugin before 1.5.25 for WordPress has Authenticated Local File Inclusion via directory traversal in ... | 4.9 - MEDIUM | 2019-08-09 | 2019-08-14 |
| CVE-2019-14797 | The 10Web Photo Gallery plugin before 1.5.23 for WordPress has authenticated stored XSS. | 5.4 - MEDIUM | 2019-08-09 | 2019-08-14 |
Known software with vulnerabilities from 10Web
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | 10web | Form Maker | 1.0.0 |
| Application | 10web | Photo Gallery | 1.0.1 |
| Application | 10web | Slider | 1.0.0 |
| Application | 10web | Social Feed For Instagram | 1.0.0 |