Lucene search
China National Vulnerability DatabaseCNVD-2022-56562HistoryJun 30, 2022 - 12:00 a.m.
WordPress NextCellent Gallery plugin跨站脚本漏洞
2022-06-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
0.001 Low
EPSS
Percentile
25.0%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress NextCellent Gallery plugin 1.9.35 and its previous versions are vulnerable to a cross-site scripting vulnerability, which stems from the plugin not cleaning or escaping certain image settings. A highly privileged attacker could exploit this vulnerability to execute JavaScript code on the client side.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress nextcellent gallery plugin | lt | 1.9.35 |
Related
wpvulndb
wpvulndb
NextCellent Gallery <= 1.9.35 - Admin+ Stored XSS
2022-06-06 00:00:00
cvelist
cvelist
CVE-2022-1971 NextCellent Gallery <= 1.9.35 - Admin+ Stored XSS
2022-06-27 08:59:02
patchstack
patchstack
cve
cve
CVE-2022-1971
2022-06-27 09:15:10
prion
prion
Cross site scripting
2022-06-27 09:15:00
nvd
nvd
CVE-2022-1971
2022-06-27 09:15:10
wpexploit
wpexploit
NextCellent Gallery <= 1.9.35 - Admin+ Stored XSS
2022-06-06 00:00:00