No analysis available yet.
Vendor Solution
Update the WordPress WP Photo Album Plus Plugin to the latest available version (at least 9.2.03.001).
Tracking
Sign in to view the affected projects.
No advisories yet.
Thu, 02 Jul 2026 16:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Thu, 02 Jul 2026 14:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Jacob N. Breetvelt
Jacob N. Breetvelt wp Photo Album Plus Wordpress Wordpress wordpress |
|
| Vendors & Products |
Jacob N. Breetvelt
Jacob N. Breetvelt wp Photo Album Plus Wordpress Wordpress wordpress |
Thu, 02 Jul 2026 11:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Unauthenticated Cross Site Scripting (XSS) in WP Photo Album Plus <= 9.2.02.004 versions. | |
| Title | WordPress WP Photo Album Plus plugin <= 9.2.02.004 - Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-07-02T15:53:05.993Z
Reserved: 2026-06-25T08:03:37.652Z
Link: CVE-2026-57675
Updated: 2026-07-02T13:33:27.507Z
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-02T13:45:02Z
-
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')