What the vulnerability does
01Description
Missing Authorization vulnerability in Photo Gallery Team Photo Gallery by 10Web.This issue affects Photo Gallery by 10Web: from n/a through 1.8.20.
CVE-2024-33586
MEDIUM
CVE-2024-33586: WordPress Photo Gallery by 10Web plugin <= 1.8.20 - Broken Access Control vulnerability
CVSS base score
5.3/10
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Key dates
02Disclosure timeline
April 29, 2024
CVE published
April 28, 2026
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2023-39167 SENEC: Storage Box V1,V2 and V3 affected by improper access control vulnerability
CVE-2023-5311 WP EXtra <= 6.2 - Missing Authorization to .htaccess File Modification
CVE-2024-55408
CVE-2025-66142 WordPress Comparimager for Elementor plugin <= 1.0.1 - Broken Access Control vulnerability
CVE-2024-1089 ImageRecycle pdf & image compression <= 3.1.13 - Missing Authorization to Settings Update in optimizeAllOn
