Lucene search
+L

4 matches found

0day.today
0day.today
added 2019/09/10 12:0 a.m.64 views

WordPress Photo Gallery 1.5.34 Plugin - Cross-Site Scripting Vulnerability (2)

Exploit for php platform in category web applications Exploit Title: WordPress Plugin Photo Gallery by 10Web img src=a onerror='alert2;' 4. Click Save. 5. It will show pop-up confirming existence of XSS vulnerability Timeline 09-01-2019 - Vulnerability Reported 09-03-2019 - Vendor responded...

4.3CVSS0.1AI score0.05303EPSS
Exploits4
Packet Storm
Packet Storm
added 2019/09/10 12:0 a.m.246 views

WordPress Photo Gallery 1.5.34 Cross Site Scripting

Exploit Title: WordPress Plugin Photo Gallery by 10Web alert1; 4. Click Save and preview. 5. It will show pop-up confirming existence of XSS vulnerability Timeline 09-01-2019 - Vulnerability Reported 09-03-2019 - Vendor responded 09-04-2019 - New version released 1.5.35 09-10-2019 - Full Disclosu...

4.3CVSS5.7AI score0.05303EPSS
Exploits8
NVD
NVD
added 2019/09/08 11:15 p.m.46 views

CVE-2019-16118

Cross site scripting XSS in the photo-gallery 10Web Photo Gallery plugin before 1.5.35 for WordPress exists via admin/controllers/Options.php...

6.1CVSS6.2AI score0.05303EPSS
Exploits4References5
CVE
CVE
added 2019/09/08 10:49 p.m.168 views

CVE-2019-16118

CVE-2019-16118 affects the WordPress Photo Gallery (10Web Photo Gallery) plugin prior to 1.5.35. The issue is a Cross-Site Scripting (XSS) vulnerability exposed via admin/controllers/Options.php, caused by unvalidated/unescaped data. Impact per sources: attacker could execute script in victim’s b...

6.1CVSS6.1AI score0.05303EPSS
Exploits4References5Affected Software1
Rows per page
Query Builder