A stored XSS vulnerability exists in the Envira Photo Gallery plugin through 1.7.6 for WordPress. Successful exploitation of this vulnerability would allow a authenticated low-privileged user to inject arbitrary JavaScript code that is viewed by other users.
CPE | Name | Operator | Version |
---|---|---|---|
envira_gallery | le | 1.7.6 |