Lucene search
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.WEB_APPLICATION_SCANNING_114208HistoryFeb 19, 2024 - 12:00 a.m.
InPost Gallery Plugin for WordPress < 2.1.4.2 Cross-Site Scripting
2024-02-1900:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
2
inpost gallery wordpress security
6.3 Medium
AI Score
Confidence
High
The WordPress InPost Gallery Plugin installed on the remote host is affected by an authenticated reflected Cross-Site Scripting (XSS) in the imgurl parameter of the add_inpost_gallery_slide_item action.
Note that the scanner has not tested for these issues but has instead relied only on the applicationβs self-reported version number.
No source data| Vendor | Product | Version | CPE |
|---|---|---|---|
| pluginus | inpost_gallery | * | cpe:2.3:a:pluginus:inpost_gallery:*:*:*:*:*:wordpress:*:* |
6.3 Medium
AI Score
Confidence
High