Unauthenticated Cross Site Scripting (XSS) in WP Photo Album Plus <= 9.2.02.004 versions.
Project Subscriptions
Advisories
No advisories yet.
Fixes
Solution
Update the WordPress WP Photo Album Plus Plugin to the latest available version (at least 9.2.03.001).
Workaround
No workaround given by the vendor.
References
History
Thu, 02 Jul 2026 14:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Jacob N. Breetvelt
Jacob N. Breetvelt wp Photo Album Plus Wordpress Wordpress wordpress |
|
| Vendors & Products |
Jacob N. Breetvelt
Jacob N. Breetvelt wp Photo Album Plus Wordpress Wordpress wordpress |
Thu, 02 Jul 2026 11:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Unauthenticated Cross Site Scripting (XSS) in WP Photo Album Plus <= 9.2.02.004 versions. | |
| Title | WordPress WP Photo Album Plus plugin <= 9.2.02.004 - Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-07-02T11:27:06.902Z
Reserved: 2026-06-25T08:03:37.652Z
Link: CVE-2026-57675
No data.
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-02T13:45:02Z
Weaknesses