CVE-2025-27276

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Feb 24, 2025

CWE ID 352

Summary

CVE-2025-27276 is a Cross-Site Request Forgery (CSRF) vulnerability identified in the lizeipe Photo Gallery (Responsive) software. This issue enables an attacker to trick a user into executing unintended actions on the affected system, potentially leading to privilege escalation. The vulnerability affects Photo Gallery (Responsive) versions from n/a to 4.0. Users are strongly advised to update their software to a secure, patched version to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/3lyyoW
https://www.cve.org/CVERecord?id=CVE-2025-27276
https://nvd.nist.gov/vuln/detail/CVE-2025-27276

Back to Vulnerability Database

CVE-2025-27276

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations