2 matches found
WordPress Gallery Bank plugin <= 4.0.50 - Authenticated Stored Cross-Site Scripting (XSS) vulnerability via Media Upload Module
Authenticated Stored Cross-Site Scripting XSS vulnerability via Media Upload Module discovered by Vishnupriya Ilango Fortinet FortiGuard Labs in WordPress Gallery Bank plugin versions = 4.0.50. Solution Deactivate and delete. This plugin has been closed as of December 9, 2021 and is not available...
Gallery Bank Plugin for WordPress < 2.0.20 XSS
According to its self-reported version, the Gallery Bank Plugin for WordPress running on the remote web server is prior to 2.0.20. It is, therefore, affected by multiple reflected cross-site scripting vulnerabilities. A remote attacker can exploit these issues, via a specially crafted request, to...