[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fIxQYuXSWm78BLqtZRXs7VJPagyx8Q0TmGcR8VgCLofw":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":9,"severity":11,"cvss_score":12,"cvss_vector":13,"vuln_type":14,"published_date":15,"updated_date":16,"references":17,"days_to_patch":9},"CVE-2025-49451","aeroscroll-gallery-infinite-scroll-image-gallery-post-grid-with-photo-gallery-unauthenticated-directory-traversal","Aeroscroll Gallery – Infinite Scroll Image Gallery & Post Grid with Photo Gallery \u003C= 1.0.12 - Unauthenticated Directory Traversal","The Aeroscroll Gallery – Infinite Scroll Image Gallery & Post Grid with Photo Gallery plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.0.12. This makes it possible for unauthenticated attackers to perform actions on files outside of the originally intended directory.","aeroscroll-gallery",null,"\u003C=1.0.12","medium",5.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')","2025-06-09 00:00:00","2025-06-17 15:21:30",[18],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fc3ca0a37-f2e3-4403-83ca-7dd2924e317d?source=api-prod"]