WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Photo Gallery 1.1.30 - Cross Site Scripting

Description

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin was affected by a Cross Site Scripting security vulnerability.

Affects Plugins

photo-gallery
Fixed in version 1.1.31

References

CVE
CVE-2014-6315
URL
https://packetstormsecurity.com/files/128518/
URL
https://www.immuniweb.com/advisory/HTB23232

Classification

Type

XSS

OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Submitter

pvdl

Verified

No

WPVDB ID
9285f0b4-1e9f-49d6-a831-4b9f0f0c40a2

Timeline

Publicly Published

2014-10-01 (about 7 years ago)

Added

2015-02-01 (about 7 years ago)

Last Updated

2019-10-21 (about 2 years ago)

Our Other Services

WPScan WordPress Security Plugin