Lucene search

[email protected]NVD:CVE-2013-3261

HistoryJun 01, 2013 - 2:21 p.m.

CVE-2013-3261

2013-06-0114:21:06

CWE-79

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.001

Percentile

49.0%

JSON

Cross-site scripting (XSS) vulnerability in wp-admin/admin.php in the GRAND FlAGallery plugin before 2.72 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter in a flag-manage-gallery action.

Affected configurations

Nvd

Node

photogallerycreatorflash-album-galleryRange≤2.71

photogallerycreatorflash-album-galleryMatch0.29

photogallerycreatorflash-album-galleryMatch0.32

photogallerycreatorflash-album-galleryMatch0.33

photogallerycreatorflash-album-galleryMatch0.34

photogallerycreatorflash-album-galleryMatch0.35

photogallerycreatorflash-album-galleryMatch0.36

photogallerycreatorflash-album-galleryMatch0.37

photogallerycreatorflash-album-galleryMatch0.38

photogallerycreatorflash-album-galleryMatch0.39

photogallerycreatorflash-album-galleryMatch0.39pl1

photogallerycreatorflash-album-galleryMatch0.39pl2

photogallerycreatorflash-album-galleryMatch0.39pl3

photogallerycreatorflash-album-galleryMatch0.40

photogallerycreatorflash-album-galleryMatch0.41

photogallerycreatorflash-album-galleryMatch0.42

photogallerycreatorflash-album-galleryMatch0.43

photogallerycreatorflash-album-galleryMatch0.44

photogallerycreatorflash-album-galleryMatch0.45

photogallerycreatorflash-album-galleryMatch0.46

photogallerycreatorflash-album-galleryMatch0.49

photogallerycreatorflash-album-galleryMatch0.50

photogallerycreatorflash-album-galleryMatch0.52

photogallerycreatorflash-album-galleryMatch0.53

photogallerycreatorflash-album-galleryMatch0.54

photogallerycreatorflash-album-galleryMatch0.55

photogallerycreatorflash-album-galleryMatch0.56

photogallerycreatorflash-album-galleryMatch0.57

photogallerycreatorflash-album-galleryMatch0.58

photogallerycreatorflash-album-galleryMatch0.58pl1

photogallerycreatorflash-album-galleryMatch0.59

photogallerycreatorflash-album-galleryMatch0.60

photogallerycreatorflash-album-galleryMatch0.61

photogallerycreatorflash-album-galleryMatch1.11

photogallerycreatorflash-album-galleryMatch1.12

photogallerycreatorflash-album-galleryMatch1.13

photogallerycreatorflash-album-galleryMatch1.20

photogallerycreatorflash-album-galleryMatch1.21

photogallerycreatorflash-album-galleryMatch1.22

photogallerycreatorflash-album-galleryMatch1.23

photogallerycreatorflash-album-galleryMatch1.31

photogallerycreatorflash-album-galleryMatch1.32

photogallerycreatorflash-album-galleryMatch1.33

photogallerycreatorflash-album-galleryMatch1.40

photogallerycreatorflash-album-galleryMatch1.41

photogallerycreatorflash-album-galleryMatch1.42

photogallerycreatorflash-album-galleryMatch1.43

photogallerycreatorflash-album-galleryMatch1.44

photogallerycreatorflash-album-galleryMatch1.45

photogallerycreatorflash-album-galleryMatch1.47

photogallerycreatorflash-album-galleryMatch1.48

photogallerycreatorflash-album-galleryMatch1.49

photogallerycreatorflash-album-galleryMatch1.50

photogallerycreatorflash-album-galleryMatch1.51

photogallerycreatorflash-album-galleryMatch1.52

photogallerycreatorflash-album-galleryMatch1.53

photogallerycreatorflash-album-galleryMatch1.54

photogallerycreatorflash-album-galleryMatch1.55

photogallerycreatorflash-album-galleryMatch1.56

photogallerycreatorflash-album-galleryMatch1.57

photogallerycreatorflash-album-galleryMatch1.58

photogallerycreatorflash-album-galleryMatch1.59

photogallerycreatorflash-album-galleryMatch1.60

photogallerycreatorflash-album-galleryMatch1.61

photogallerycreatorflash-album-galleryMatch1.62

photogallerycreatorflash-album-galleryMatch1.63

photogallerycreatorflash-album-galleryMatch1.64

photogallerycreatorflash-album-galleryMatch1.65

photogallerycreatorflash-album-galleryMatch1.66

photogallerycreatorflash-album-galleryMatch1.67

photogallerycreatorflash-album-galleryMatch1.70

photogallerycreatorflash-album-galleryMatch1.71

photogallerycreatorflash-album-galleryMatch1.72

photogallerycreatorflash-album-galleryMatch1.73

photogallerycreatorflash-album-galleryMatch1.74

photogallerycreatorflash-album-galleryMatch1.75

photogallerycreatorflash-album-galleryMatch1.76

photogallerycreatorflash-album-galleryMatch1.77

photogallerycreatorflash-album-galleryMatch1.78

photogallerycreatorflash-album-galleryMatch1.79

photogallerycreatorflash-album-galleryMatch1.80

photogallerycreatorflash-album-galleryMatch1.81

photogallerycreatorflash-album-galleryMatch1.82

photogallerycreatorflash-album-galleryMatch1.83

photogallerycreatorflash-album-galleryMatch1.84

photogallerycreatorflash-album-galleryMatch1.85

photogallerycreatorflash-album-galleryMatch1.90

photogallerycreatorflash-album-galleryMatch2.00

photogallerycreatorflash-album-galleryMatch2.10

photogallerycreatorflash-album-galleryMatch2.11

photogallerycreatorflash-album-galleryMatch2.12

photogallerycreatorflash-album-galleryMatch2.14

photogallerycreatorflash-album-galleryMatch2.15

photogallerycreatorflash-album-galleryMatch2.16

photogallerycreatorflash-album-galleryMatch2.17

photogallerycreatorflash-album-galleryMatch2.18

photogallerycreatorflash-album-galleryMatch2.50

photogallerycreatorflash-album-galleryMatch2.51

photogallerycreatorflash-album-galleryMatch2.52

photogallerycreatorflash-album-galleryMatch2.53

photogallerycreatorflash-album-galleryMatch2.54

photogallerycreatorflash-album-galleryMatch2.55

photogallerycreatorflash-album-galleryMatch2.56

photogallerycreatorflash-album-galleryMatch2.70

AND

wordpresswordpressMatch-

VendorProductVersionCPE
photogallerycreatorflash-album-gallery*cpe:2.3:a:photogallerycreator:flash-album-gallery:*:*:*:*:*:*:*:*
photogallerycreatorflash-album-gallery0.29cpe:2.3:a:photogallerycreator:flash-album-gallery:0.29:*:*:*:*:*:*:*
photogallerycreatorflash-album-gallery0.32cpe:2.3:a:photogallerycreator:flash-album-gallery:0.32:*:*:*:*:*:*:*
photogallerycreatorflash-album-gallery0.33cpe:2.3:a:photogallerycreator:flash-album-gallery:0.33:*:*:*:*:*:*:*
photogallerycreatorflash-album-gallery0.34cpe:2.3:a:photogallerycreator:flash-album-gallery:0.34:*:*:*:*:*:*:*
photogallerycreatorflash-album-gallery0.35cpe:2.3:a:photogallerycreator:flash-album-gallery:0.35:*:*:*:*:*:*:*
photogallerycreatorflash-album-gallery0.36cpe:2.3:a:photogallerycreator:flash-album-gallery:0.36:*:*:*:*:*:*:*
photogallerycreatorflash-album-gallery0.37cpe:2.3:a:photogallerycreator:flash-album-gallery:0.37:*:*:*:*:*:*:*
photogallerycreatorflash-album-gallery0.38cpe:2.3:a:photogallerycreator:flash-album-gallery:0.38:*:*:*:*:*:*:*
photogallerycreatorflash-album-gallery0.39cpe:2.3:a:photogallerycreator:flash-album-gallery:0.39:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
photogallerycreator	flash-album-gallery	*	cpe:2.3:a:photogallerycreator:flash-album-gallery::::::::
photogallerycreator	flash-album-gallery	0.29	cpe:2.3:a:photogallerycreator:flash-album-gallery:0.29:::::::*
photogallerycreator	flash-album-gallery	0.32	cpe:2.3:a:photogallerycreator:flash-album-gallery:0.32:::::::*
photogallerycreator	flash-album-gallery	0.33	cpe:2.3:a:photogallerycreator:flash-album-gallery:0.33:::::::*
photogallerycreator	flash-album-gallery	0.34	cpe:2.3:a:photogallerycreator:flash-album-gallery:0.34:::::::*
photogallerycreator	flash-album-gallery	0.35	cpe:2.3:a:photogallerycreator:flash-album-gallery:0.35:::::::*
photogallerycreator	flash-album-gallery	0.36	cpe:2.3:a:photogallerycreator:flash-album-gallery:0.36:::::::*
photogallerycreator	flash-album-gallery	0.37	cpe:2.3:a:photogallerycreator:flash-album-gallery:0.37:::::::*
photogallerycreator	flash-album-gallery	0.38	cpe:2.3:a:photogallerycreator:flash-album-gallery:0.38:::::::*
photogallerycreator	flash-album-gallery	0.39	cpe:2.3:a:photogallerycreator:flash-album-gallery:0.39:::::::*