CVE-2025-12377 | Gallery Plugin up to 1.12.0 on WordPress authorization

November 13, 2025 Yanac

A vulnerability identified as critical has been detected in Gallery Plugin up to 1.12.0 on WordPress. This vulnerability affects unknown code. Performing manipulation results in missing authorization.

This vulnerability was named CVE-2025-12377. The attack may be initiated remotely. There is no available exploit.VulDB Recent EntriesRead More

CVE-2025-10295 | Angel Plugin up to 3.2.3 on WordPress Media Upload cross site scripting
CVE-2025-12681 | Comment Edit Core Plugin up to 3.1.0 on WordPress Email Address ajax_get_comment information disclosure