A vulnerability was found in All-in-One Video Gallery Plugin up to 3.6.5 on WordPress. It has been declared as problematic. Affected by this vulnerability is the function
aiovg_search_form
of the component Shortcode Handler. The manipulation leads to file inclusion.
This vulnerability is known as CVE-2024-4670. Access to the local network is required for this attack. There is no exploit available.