WordPress Plugin Vulnerabilities
FooGallery < 2.0.35 - Authenticated Stored Cross-Site Scripting
Description
In the plugin, the Custom CSS field of each gallery is not properly sanitised or validated before being being output in the page where the gallery is embed, leading to a stored Cross-Site Scripting issue.
Proof of Concept
Create or edit a gallery and add the following payload in the Custom CSS field: </style><svg/onload=alert(document.domain)> Then, view the embed gallery (which must have at least one image) in a page or post to trigger the XSS
Affects Plugins
References
CVE
Classification
Type
XSS
OWASP top 10
CWE
CVSS
Miscellaneous
Original Researcher
avolume
Verified
Yes
WPVDB ID
Timeline
Publicly Published
2021-05-31 (about 2 years ago)
Added
2021-05-31 (about 2 years ago)
Last Updated
2021-06-01 (about 2 years ago)