Lucene search

K
patchstackKacper SzurekPATCHSTACK:84DD69CCEF9F308C24D281736AED0501
HistoryFeb 08, 2016 - 12:00 a.m.

WordPress Huge It Image Gallery Plugin <= 1.7.0 - Reflected Cross Site Scripting

2016-02-0800:00:00
Kacper Szurek
patchstack.com
4
wordpress
image gallery
cross site scripting
upgrade

Because of this vulnerability, the attackers can inject arbitrary JavaScript or HTML code.

Solution

           Upgrade the plugin. 

Affected configurations

Vulners
Node
huge-itimage_galleryRange1.7.0wordpress
VendorProductVersionCPE
huge-itimage_gallery*cpe:2.3:a:huge-it:image_gallery:*:*:*:*:*:wordpress:*:*