CVE-2023-40213 WordPress Justified Gallery plugin <= 1.7.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Mateusz Czardybon Justified Gallery allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Justified Gallery: from n/a through 1.7.3...

WordPress Justified Gallery Plugin <= 1.7.3 is vulnerable to Broken Access Control

Software Justified Gallery Type Plugin Vulnerable versions = 1.7.3 Fixed in 1.8.0 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-40213 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 1e36405321d9 Credits Abdi Pranata Required...

WordPress Justified Gallery Plugin < 1.8.1 is vulnerable to Cross Site Scripting (XSS)

Software Justified Gallery Type Plugin Vulnerable versions 1.8.1 Fixed in 1.8.1 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 1b33d1e3fa93 Credits Rafie Muhammad Patchstack Requir...