Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentWPScanVULNRICHMENT:CVE-2024-1487
HistoryMar 11, 2024 - 5:56 p.m.

CVE-2024-1487 Photos and Files Contest Gallery < 21.3.1 - Author+ Stored Cross Site Scripting

2024-03-1117:56:07
WPScan
github.com
1
wordpress
plugin
cross site scripting
cve-2024-1487
gallery
files
contest
author

AI Score

6.1

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON

The Photos and Files Contest Gallery WordPress plugin before 21.3.1 does not sanitize and escape some parameters, which could allow users with a role as low as author to perform Cross-Site Scripting attacks.

Related

wpvulndb 1
prion 1
nvd 1
cve 1
cvelist 1
wpexploit 1
wpvulndb
wpvulndb
Photos and Files Contest Gallery < 21.3.1 - Author+ Stored Cross Site Scripting
2024-02-14 00:00:00
prion
prion
Cross site scripting
2024-03-11 18:15:00
nvd
nvd
CVE-2024-1487
2024-03-11 18:15:18
cve
cve
CVE-2024-1487
2024-03-11 18:15:18
cvelist
cvelist
CVE-2024-1487 Photos and Files Contest Gallery < 21.3.1 - Author+ Stored Cross Site Scripting
2024-03-11 17:56:07
wpexploit
wpexploit
Photos and Files Contest Gallery < 21.3.1 - Author+ Stored Cross Site Scripting
2024-02-14 00:00:00

AI Score

6.1

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON
Related for VULNRICHMENT:CVE-2024-1487
wpvulndb1prion1nvd1cve1cvelist1wpexploit1