6 matches found
CVE-2023-23676
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Bruno "Aesqe" Babic File Gallery plugin = 1.8.5.3 versions...
CVE-2023-23676
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Bruno "Aesqe" Babic File Gallery plugin = 1.8.5.3 versions...
CVE-2023-23676
CVE-2023-23676 affects the WordPress plugin File Gallery (author Bruno 'Aesqe' Babic). Vulnerable until version ≤ 1.8.5.3 due to a Stored Cross-Site Scripting (XSS) flaw in the plugin’s file_gallery_shortcode, enabling malicious payloads to be stored and later executed in other users’ sessions. T...
CVE-2023-23676 WordPress File Gallery Plugin <= 1.8.5.3 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Bruno "Aesqe" Babic File Gallery plugin = 1.8.5.3 versions...
CVE-2023-23676 WordPress File Gallery Plugin <= 1.8.5.3 is vulnerable to Cross Site Scripting (XSS)
Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Bruno "Aesqe" Babic File Gallery plugin = 1.8.5.3 versions...
WordPress File Gallery Plugin <= 1.8.5.3 is vulnerable to Cross Site Scripting (XSS)
Software File Gallery Type Plugin Vulnerable versions = 1.8.5.3 Fixed in 1.8.5.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-23676 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID d0eae18428aa Credits István Márton Required...