2 matches found
WordPress prettyPhoto Plugin <= 1.2.3 is vulnerable to Cross Site Scripting (XSS)
Software prettyPhoto Type Plugin Vulnerable versions = 1.2.3 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-5162 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 30cbe1032315 Credits stealthcopter Required privile...
PT-2024-34763 · WordPress · Prettyphoto
Name of the Vulnerable Software and Affected Versions: WordPress prettyPhoto plugin for WordPress version 1.2.3 and earlier Description: The WordPress prettyPhoto plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the url parameter due to insufficient input sanitization and...