CVE-2026-32330 — Cross-Site Request Forgery in Photo Gallery BY 10web

CWE-352 — Cross-Site Request Forgery3 documents3 sources

Severity

4.3MEDIUMNVD

EPSS

0.0%

top 95.91%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

10web Photo Gallery BY 10web

Timeline

PublishedMar 13

Description

Cross-Site Request Forgery (CSRF) vulnerability in 10Web Photo Gallery by 10Web photo-gallery allows Cross Site Request Forgery.This issue affects Photo Gallery by 10Web: from n/a through <= 1.8.37.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages1 packages

▶CVEListV510web/photo_gallery_by_10web1.8.37

🔴Vulnerability Details

CVEList

WordPress Photo Gallery by 10Web plugin <= 1.8.37 - Cross Site Request Forgery (CSRF) vulnerability↗2026-03-13

▶

GHSA

GHSA-qw27-8ccm-3c9q: Cross-Site Request Forgery (CSRF) vulnerability in 10Web Photo Gallery by 10Web photo-gallery allows Cross Site Request Forgery↗2026-03-13

▶