logo
DATABASE RESOURCES PRICING ABOUT US

Envira Gallery Lite < 1.8.3.3 - Authenticated Stored Cross-Site Scripting

Description

The plugin does not properly sanitise the images metadata (namely title) before outputting them in the generated gallery. This allows privileged accounts such as editor+ to perform XSS attacks (even without the unfiltered_html capability) against users visiting the gallery in the frontend.


Related