Photo Gallery, Images, Slider in Rbs Image Gallery < 3.2.22 – Contributor+ Stored XSS | CVE 2024-10102 | Plugin Vulnerabilities

Description

The plugin does not sanitise and escape some of its Gallery settings, which could allow high privilege users such as contributor to perform Stored Cross-Site Scripting attacks

Proof of Concept

1) Create a new Robo Gallery
2) Add here any "Image" with any text 
3) Put inside "Padding Left" any Malicious JS -> like this " % onmouseover=alert(1)
4) Go to new gallery page and hover on image

Affects Plugins

Fixed in 3.2.22

References

CVE

URL

https://research.cleantalk.org/cve-2024-10102/

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Dmitrii Ignatyev

Submitter

Dmitrii Ignatyev

Submitter website

https://www.linkedin.com/in/dmitriy-ignatyev-8a9189267/

Verified

Yes

WPVDB ID

3b34d1ec-5370-40a8-964e-663f4f9f42f8

Timeline

Publicly Published

2024-12-17 (about 1 year ago)

Added

2024-12-17 (about 1 year ago)

Last Updated

2024-12-17 (about 1 year ago)

Other

Published

Title

Published

2024-11-20

Title

Block Editor Bootstrap Blocks < 6.6.2 - Reflected Cross-Site Scripting via tab

Published

2023-01-30

Title

GS Products Slider for WooCommerce < 1.5.9 - Contributor+ Stored XSS

Published

2025-12-12

Title

WP to LinkedIn Auto Publish < 1.9.9 - Reflected Cross-Site Scripting via PostMessage

Published

2024-12-13

Title

Plezi < 1.0.7 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2024-04-16

Title

QR Code Composer < 2.0.4 - Subscriber+ Stored XSS