Medium severity4.9NVD Advisory· Published Aug 16, 2021· Updated Jun 17, 2026
CVE-2021-24363
CVE-2021-24363
Description
The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin before 1.5.75 did not ensure that uploaded files are kept inside its uploads folder, allowing high privilege users to put images/SVG anywhere in the filesystem via a path traversal vector
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <1.5.75
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/1628935f-1d7d-4609-b7a9-e5526499c974nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.