CVE-2022-0750

2022-03-2319:46:50

Wordfence

www.cve.org

photoswipe masonry gallery

wordpress

cross-site scripting

insufficient escaping

sanitization

inject

web scripts

CVSS3

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

26.4%

JSON

The Photoswipe Masonry Gallery WordPress plugin is vulnerable to Cross-Site Scripting due to insufficient escaping and sanitization of the thumbnail_width, thumbnail_height, max_image_width, and max_image_height parameters found in the ~/photoswipe-masonry.php file which allows authenticated attackers to inject arbitrary web scripts into galleries created by the plugin and on the PhotoSwipe Options page. This affects versions up to and including 1.2.14.

CNA Affected

[
  {
    "vendor": "deanoakley",
    "product": "Photoswipe Masonry Gallery",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "1.2.14",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]