logo
DATABASE RESOURCES PRICING ABOUT US

Photo Gallery < 1.5.69 - Multiple Reflected Cross-Site Scripting (XSS)

Description

The plugin was vulnerable to Reflected Cross-Site Scripting (XSS) issues via the gallery_id, tag, album_id and theme_id GET parameters passed to the bwg_frontend_data AJAX action (available to both unauthenticated and authenticated users)


Related