Lucene search
K

13 matches found

Patchstack
Patchstack
added 2023/07/19 12:0 a.m.4 views

WordPress Gallery Bank Plugin <= 4.0.18 is vulnerable to Cross Site Scripting (XSS)

Software Gallery Bank Type Plugin Vulnerable versions = 4.0.18 Fixed in 4.0.19 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID b7b7ba517a68 Credits Rafie Muhammad Patchstack Required...

5.9AI score0.00284EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2022/06/09 12:0 a.m.15 views

WordPress Gallery Bank plugin <= 4.0.50 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability via Media Upload Module

Authenticated Stored Cross-Site Scripting XSS vulnerability via Media Upload Module discovered by Vishnupriya Ilango Fortinet FortiGuard Labs in WordPress Gallery Bank plugin versions = 4.0.50. Solution Deactivate and delete. This plugin has been closed as of December 9, 2021 and is not available...

2.1AI score
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2022/06/09 12:0 a.m.11 views

WordPress Gallery Bank plugin <= 4.0.50 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability via Gallery Description

Authenticated Stored Cross-Site Scripting XSS vulnerability via Gallery Description discovered by Vishnupriya Ilango Fortinet's FortiGuard Labs in WordPress Gallery Bank plugin versions = 4.0.50. Solution Deactivate and delete. This plugin has been closed as of December 9, 2021 and is not availab...

1.9AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2022/06/08 12:0 a.m.8 views

Gallery Bank <= 4.0.50 - Author+ Stored XSS via Gallery Description

The plugin does not sanitise and escape the Gallery Description field, which could allow users with a role as low as Author to perform Stored Cross-Site Scripting attacks...

3.8AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2022/06/08 12:0 a.m.9 views

Gallery Bank <= 4.0.50 - Author+ Stored XSS via Media Upload Module

The plugin does not sanitise and escape the Image Title field via the Media Upload module, which could allow users with a role as low as Author to perform Stored Cross-Site Scripting attacks...

3.6AI score
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/12/15 12:0 a.m.50 views

Gallery Bank Plugin for WordPress < 2.0.20 XSS

According to its self-reported version, the Gallery Bank Plugin for WordPress running on the remote web server is prior to 2.0.20. It is, therefore, affected by multiple reflected cross-site scripting vulnerabilities. A remote attacker can exploit these issues, via a specially crafted request, to...

6AI score
Exploits0References4
OpenVAS
OpenVAS
added 2017/10/09 12:0 a.m.54 views

WordPress Gallery Bank Plugin < 3.0.70 XSS Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description scriptoid"1.3.6.1.4.1.25623.1.0.112071";...

6.1CVSS6.3AI score0.0118EPSS
Exploits1References2
Patchstack
Patchstack
added 2015/05/14 12:0 a.m.11 views

WordPress Gallery Bank Plugin <= 3.0.228 - Cross Site Scripting

Because of this vulnerability, the attackers can inject arbitrary web script or HTML. Solution Update the plugin...

2.1AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2015/02/21 12:0 a.m.13 views

Gallery Bank <= 3.0.101 - SQL Injection

The Gallery Bank – Responsive Photo Gallery plugin exposes a Short Code named ‘gallerybank’, in order to allow site publishers to insert galleries into pages / posts. This Short Code is vulnerable to a UNION based SQL Injection. This is possible by manipulating the field ‘showalbums’ when using...

2AI score
Exploits0References2Affected Software1
WPVulnDB
WPVulnDB
added 2014/11/25 12:1 p.m.8 views

Gallery Bank <= 3.0.60 - Shell Upload

The WordPress Photo Gallery Plugin by Gallery Bank WordPress plugin was affected by a Shell Upload security vulnerability...

2.3AI score
Exploits0References1Affected Software1
WPVulnDB
WPVulnDB
added 2014/08/01 10:59 a.m.8 views

Gallery Bank 2.0.19 - edit-album.php album_id Parameter Reflected XSS

The WordPress Photo Gallery Plugin by Gallery Bank WordPress plugin was affected by an edit-album.php albumid Parameter Reflected XSS security vulnerability...

2.9AI score
Exploits0References2Affected Software1
securityvulns
securityvulns
added 2013/12/09 12:0 a.m.36 views

[SOJOBO-ADV-13-03] - Wordpress plugin Gallery Bank 2.0.19 Reflected Cross Site Scripting

SOJOBO-ADV-13-03 - Wordpress plugin Gallery Bank 2.0.19 Reflected Cross Site Scripting I. Information ================== Name : Wordpress plugin Gallery Bank 2.0.19 Reflected Cross Site Scripting Software : Gallery Bank 2.0.19 and possibly below. Vendor Homepage : http://gallery-bank.com/...

7.2AI score
Exploits0
Packet Storm
Packet Storm
added 2013/11/06 12:0 a.m.26 views

WordPress Gallery Bank 2.0.19 Cross Site Scripting

SOJOBO-ADV-13-03 - Wordpress plugin Gallery Bank 2.0.19 Reflected Cross Site Scripting I. Information ================== Name : Wordpress plugin Gallery Bank 2.0.19 Reflected Cross Site Scripting Software : Gallery Bank 2.0.19 and possibly below. Vendor Homepage : http://gallery-bank.com/...

7AI score
Exploits0
Rows per page
Query Builder