Lucene search
K

5 matches found

NVD
NVD
added 2024/01/03 9:15 a.m.16 views

CVE-2023-6747

The Best WordPress Gallery Plugin – FooGallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the custom attributes in all versions up to, and including, 2.3.3 due to insufficient input sanitization and output escaping. This makes it possible for contributors and above to...

6.4CVSS5.8AI score0.00407EPSS
Exploits0References4
CVE
CVE
added 2024/01/03 8:29 a.m.64 views

CVE-2023-6747

The CVE-2023-6747 entry affects the WordPress plugin FooGallery (WordPress) and describes a Stored Cross-Site Scripting (XSS) vulnerability in the plugin’s handling of custom attributes. The root cause is described as insufficient input sanitization and output escaping in versions up to and inclu...

6.4CVSS5.3AI score0.00407EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2024/01/03 8:29 a.m.33 views

CVE-2023-6747 FooGallery Premium <= 2.3.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Best WordPress Gallery Plugin – FooGallery plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the custom attributes in all versions up to, and including, 2.3.3 due to insufficient input sanitization and output escaping. This makes it possible for contributors and above to...

6.4CVSS5.9AI score0.00407EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/01/03 12:0 a.m.12 views

WordPress FooGallery Premium Plugin <= 2.3.3 is vulnerable to Cross Site Scripting (XSS)

Software FooGallery Premium Type Plugin Vulnerable versions = 2.3.3 Fixed in 2.4.6 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-6747 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 6e234ed1eb7c Credits WordFence Required...

6.4CVSS5.7AI score0.00407EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2024/01/02 8:15 p.m.29 views

CVE-2023-6752

Rejected reason: REJECT DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2023-6747. Reason: This candidate is a reservation duplicate of CVE-2023-6747. Notes: All CVE users should reference CVE-2023-6747 instead of this candidate. All references and descriptions in this candidate have been remov...

6AI score
Exploits0
Rows per page
Query Builder