4 matches found
Cross-Site Scripting (XSS) in Photo Gallery WordPress plugin
Advisory ID: HTB23232 Product: Photo Gallery WordPress plugin Vendor: http://web-dorado.com/ Vulnerable Versions: 1.1.30 and probably prior Tested Version: 1.1.30 Advisory Publication: September 10, 2014 without technical details Vendor Notification: September 10, 2014 Vendor Patch: September 10,...
CVE-2014-6315
CVE-2014-6315 concerns the WordPress plugin Photo Gallery (Web-Dorado) up to version 1.1.30. The vulnerability is a set of Cross-Site Scripting (XSS) flaws exposed via three HTTP GET/parameters to wp-admin/admin-ajax.php: callback, dir, and extensions. The root cause is insufficient sanitization ...
WordPress Photo Gallery 1.1.30 Cross Site Scripting Vulnerability
WordPress Photo Gallery plugin version 1.1.30 suffers from a cross site scripting vulnerability. Product: Photo Gallery WordPress plugin Vendor: http://web-dorado.com/ Vulnerable Versions: 1.1.30 and probably prior Tested Version: 1.1.30 Advisory Publication: September 10, 2014 without technical...
WordPress Photo Gallery 1.1.30 Cross Site Scripting
Advisory ID: HTB23232 Product: Photo Gallery WordPress plugin Vendor: http://web-dorado.com/ Vulnerable Versions: 1.1.30 and probably prior Tested Version: 1.1.30 Advisory Publication: September 10, 2014 without technical details Vendor Notification: September 10, 2014 Vendor Patch: September 10,...