📦 Tinywebgallery

CVE-2023-53922 is a critical remote code execution vulnerability in TinyWebGallery v2.5 that allows unauthenticated attackers to upload malicious PHP files via the admin upload functionality. By uploa...

TinyWebGallery v2.5 contains a stored cross-site scripting vulnerability where authenticated attackers can inject malicious JavaScript through folder names. This allows execution of arbitrary scripts ...