WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

NextGEN Gallery 1.9.5 - gallerypath Parameter Stored XSS

Description

The WordPress Gallery Plugin – NextGEN Gallery WordPress plugin was affected by a gallerypath Parameter Stored XSS security vulnerability.

Affects Plugins

nextgen-gallery
Fixed in version 2.0.0

Classification

Type

XSS

OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Verified

No

WPVDB ID
31914454-bb46-41fe-ad73-eba2a37d3793

Timeline

Publicly Published

2015-02-08 (about 8 years ago)

Added

2014-08-01 (about 9 years ago)

Last Updated

2015-05-15 (about 8 years ago)

Our Other Services

WPScan WordPress Security Plugin