Search

Find a vulnerability

Search criteria

    2 vulnerabilities by teamdream

    CVE-2025-13621 (GCVE-0-2025-13621)

    Vulnerability from nvd – Published: 2025-12-05 05:31 – Updated: 2026-04-08 16:47
    VLAI
    Title
    dream gallery <= 1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting via 'dreampluginsmain' AJAX Action
    Summary
    The dream gallery plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or incorrect nonce validation on the 'dreampluginsmain' AJAX action. This makes it possible for unauthenticated attackers to update the plugin's settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-352 - Cross-Site Request Forgery (CSRF)
    Assigner
    Impacted products
    Vendor Product Version
    teamdream dream gallery Affected: 0 , ≤ 1.0 (semver)
    Create a notification for this product.
    Credits
    dayea song
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-13621",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-12-05T15:10:15.232614Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-12-08T20:09:04.237Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "dream gallery",
              "vendor": "teamdream",
              "versions": [
                {
                  "lessThanOrEqual": "1.0",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "dayea song"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The dream gallery plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or incorrect nonce validation on the \u0027dreampluginsmain\u0027 AJAX action. This makes it possible for unauthenticated attackers to update the plugin\u0027s settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.1,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-352",
                  "description": "CWE-352 Cross-Site Request Forgery (CSRF)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-08T16:47:35.707Z",
            "orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599",
            "shortName": "Wordfence"
          },
          "references": [
            {
              "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/3cdf6ba0-2866-4347-8518-bb1d2e40bab3?source=cve"
            },
            {
              "url": "https://plugins.trac.wordpress.org/browser/dream-gallery/tags/1.0/dreamgallery.php#L254"
            },
            {
              "url": "https://plugins.trac.wordpress.org/browser/dream-gallery/tags/1.0/dreamgallery.php#L257"
            },
            {
              "url": "https://plugins.trac.wordpress.org/browser/dream-gallery/tags/1.0/templates/front.php#L38"
            },
            {
              "url": "https://plugins.trac.wordpress.org/browser/dream-gallery/trunk/dreamgallery.php#L254"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-12-04T17:28:00.000Z",
              "value": "Disclosed"
            }
          ],
          "title": "dream gallery \u003c= 1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting via \u0027dreampluginsmain\u0027 AJAX Action"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599",
        "assignerShortName": "Wordfence",
        "cveId": "CVE-2025-13621",
        "datePublished": "2025-12-05T05:31:22.608Z",
        "dateReserved": "2025-11-24T20:43:27.215Z",
        "dateUpdated": "2026-04-08T16:47:35.707Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }

    CVE-2025-13621 (GCVE-0-2025-13621)

    Vulnerability from cvelistv5 – Published: 2025-12-05 05:31 – Updated: 2026-04-08 16:47
    VLAI
    Title
    dream gallery <= 1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting via 'dreampluginsmain' AJAX Action
    Summary
    The dream gallery plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or incorrect nonce validation on the 'dreampluginsmain' AJAX action. This makes it possible for unauthenticated attackers to update the plugin's settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
    SSVC
    Exploitation: none Automatable: no Technical Impact: partial
    CISA Coordinator (v2.0.3)
    CWE
    • CWE-352 - Cross-Site Request Forgery (CSRF)
    Assigner
    Impacted products
    Vendor Product Version
    teamdream dream gallery Affected: 0 , ≤ 1.0 (semver)
    Create a notification for this product.
    Credits
    dayea song
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-13621",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "partial"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-12-05T15:10:15.232614Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-12-08T20:09:04.237Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "product": "dream gallery",
              "vendor": "teamdream",
              "versions": [
                {
                  "lessThanOrEqual": "1.0",
                  "status": "affected",
                  "version": "0",
                  "versionType": "semver"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "dayea song"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "value": "The dream gallery plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or incorrect nonce validation on the \u0027dreampluginsmain\u0027 AJAX action. This makes it possible for unauthenticated attackers to update the plugin\u0027s settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "baseScore": 6.1,
                "baseSeverity": "MEDIUM",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
                "version": "3.1"
              }
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "cweId": "CWE-352",
                  "description": "CWE-352 Cross-Site Request Forgery (CSRF)",
                  "lang": "en",
                  "type": "CWE"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2026-04-08T16:47:35.707Z",
            "orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599",
            "shortName": "Wordfence"
          },
          "references": [
            {
              "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/3cdf6ba0-2866-4347-8518-bb1d2e40bab3?source=cve"
            },
            {
              "url": "https://plugins.trac.wordpress.org/browser/dream-gallery/tags/1.0/dreamgallery.php#L254"
            },
            {
              "url": "https://plugins.trac.wordpress.org/browser/dream-gallery/tags/1.0/dreamgallery.php#L257"
            },
            {
              "url": "https://plugins.trac.wordpress.org/browser/dream-gallery/tags/1.0/templates/front.php#L38"
            },
            {
              "url": "https://plugins.trac.wordpress.org/browser/dream-gallery/trunk/dreamgallery.php#L254"
            }
          ],
          "timeline": [
            {
              "lang": "en",
              "time": "2025-12-04T17:28:00.000Z",
              "value": "Disclosed"
            }
          ],
          "title": "dream gallery \u003c= 1.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting via \u0027dreampluginsmain\u0027 AJAX Action"
        }
      },
      "cveMetadata": {
        "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599",
        "assignerShortName": "Wordfence",
        "cveId": "CVE-2025-13621",
        "datePublished": "2025-12-05T05:31:22.608Z",
        "dateReserved": "2025-11-24T20:43:27.215Z",
        "dateUpdated": "2026-04-08T16:47:35.707Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }