2 matches found
CVE-2018-17946
The Tribulant Slideshow Gallery plugin before 1.6.6.1 for WordPress has XSS via the id, method, Gallerymessage, Galleryerror, or Galleryupdated parameter...
CVE-2018-17946
Affected product: Tribulant Slideshow Gallery plugin for WordPress (before 1.6.6.1). Vulnerability: XSS via parameters id, method, Gallerymessage, Galleryerror, or Galleryupdated. Impact: cross-site scripting exposure; CVSS indicates MEDIUM. Root cause: input handling in the plugin allows script ...