CVE-2025-47677 – GT3themes Photo Gallery Stored Cross-site Scripting

May 7, 2025

CVE ID : CVE-2025-47677

Published : May 7, 2025, 3:16 p.m. | 20 minutes ago

Description : Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in gt3themes Photo Gallery – GT3 Image Gallery & Gutenberg Block Gallery allows Stored XSS. This issue affects Photo Gallery – GT3 Image Gallery & Gutenberg Block Gallery: from n/a through 2.7.7.25.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-47674 – Credova Financial CSRF

Next Article CVE-2025-47664 – ThimPress WP Pipes SSRF

Google’s Agent2Agent protocol finds new home at the Linux Foundation

Decoding The SVG path Element: Curve And Arc Commands

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

Best early Prime Day Nintendo Switch deals: My 17 favorite sales live now

How I use VirtualBox to run any OS on my Mac – including Linux

Apple will give you a free pair of AirPods when you buy a MacBook or iPad for school – here’s who’s eligible

How Apple’s biggest potential acquisition ever could perplex AI rivals like Google

Music Streaming Platform using PHP and MySQL

Music Streaming Platform using PHP and MySQL

Solutions That Benefit Everyone – Why Inclusive Design Matters for All

Reducing Barriers Across Industries Through Inclusive Design

Windows 11 Installation Assistant Download: 2025 Guide

Windows 11 Installation Assistant Download: 2025 Guide

Didn’t Receive Gears of War: Reloaded Code? Explainer

Fix Vibrant Visuals Greyed Out in Minecraft Bedrock

CVE-2025-47677 – GT3themes Photo Gallery Stored Cross-site Scripting

Typhoon-like gang slinging TLS certificate ‘signed’ by the Los Angeles Police Department

Wedding Invitation Scam: SpyMax RAT Targets Indian WhatsApp Users, Stealing OTPs & Banking Credentials

CVE-2025-6119 – Open Asset Import Library Assimp Use After Free Vulnerability

CVE-2025-5547 – FreeFloat FTP Server CDUP Command Handler Buffer Overflow Vulnerability

The Alters is my frontrunner for indie game of the year, as it painfully reflects my family’s mortality and life’s itinerary

CVE-2025-28202 – Victure RX1800 SSH/Telnet Authentication Bypass Vulnerability

I’ve fallen in love with this stunning 5K monitor and its built-in KVM switch — it’s ideal for my creative projects

CVE-2025-4474 – WordPress Frontend Dashboard Plugin Privilege Escalation Vulnerability

High Tide (GTK4/libadwaita TIDAL Client for Linux) Hits Flathub

Smashing Security podcast #421: Toothpick flirts, Google leaks, and ICE ICE scammers

CVE-2025-47677 – GT3themes Photo Gallery Stored Cross-site Scripting

Related Posts