WordPress is a set of blogging platforms developed using the PHP language by the WordPress (Wordpress) Foundation. The platform supports setting up personal blogging sites on servers with PHP and MySQL.A cross-site scripting vulnerability exists in versions of the WordPress plugin Image Photo Gallery Final Tiles Grid before 3.5.3. The vulnerability stems from the fact that the plugin does not clean and escape the Description field when editing the gallery, and an attacker can use this vulnerability to perform cross-site scripting attacks.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress image photo gallery final tiles grid | lt | 3.5.3 |