WP Photo Album Plus
Jacob N. Breetvelt
Developer
9.2.02.004
Latest version
10,000
Installations
No date
Last updated
Vulnerability history
0 present
26 patched
14 Mitigation rules
- SQL Injection vulnerability<= 9.1.13.0055 days ago
- Unauthenticated SQL Injection via 'wppa-supersearch' Parameter vulnerability< 9.1.11.00111/06/2026
- SQL Injection vulnerability<= 9.1.08.00113/04/2026
- Reflected Cross-Site Scripting vulnerability<= 9.1.05.00807/01/2026
- Authenticated (Subscriber+) Stored Cross-Site Scripting via wppa_user_upload vulnerability<= 9.0.11.00603/10/2025
- Unauthenticated Arbitrary Shortcode Execution via getshortcodedrenderedfenodelay vulnerability<= 8.8.08.00711/11/2024
- Reflected Cross-Site Scripting vulnerability<= 8.8.05.00316/10/2024
- Authenticated Stored Cross Site Scripting (XSS) vulnerability<= 8.8.02.00211/07/2024
- Reflected Cross Site Scripting (XSS) vulnerability<= 8.8.00.00228/06/2024
- Unauthenticated Arbitrary Shortcode Execution vulnerability<= 8.7.00.00324/05/2024
- Unauthenticated Arbitrary File Upload vulnerability<= 8.7.01.00107/05/2024
- Arbitrary File Upload vulnerability< 8.6.03.00505/04/2024
- Cross Site Scripting (XSS) vulnerability<= 8.5.02.00505/12/2023
- Insecure Direct Object References (IDOR) vulnerability<= 8.5.02.00505/12/2023
- IP Bypass vulnerability<= 8.5.02.00505/12/2023
- Stored Cross-Site Scripting (XSS) vulnerability<= 8.0.902/01/2022
- Cross Site Scripting5.4.419/06/2016
- Full Path Disclosure<= 4.9.018/10/2015
- XSS<= 4.9.215/05/2015
- XSS<= 5.0.1015/05/2015
- Stored XSS<= 5.4.815/05/2015
- Reflected XSS<= 5.4.1715/05/2015
- XSS<= 4.8.1115/05/2015
- Multiple XSS<= 6.1.206/05/2015
- XSS<= 5.0.222/04/2013
- SQL Injection<= 4.1.115/10/2011