NextGEN Gallery Sell Photo <= 1.0.4 – Authenticated Stored Cross-Site Scripting

Description

The Button Text/Image field in Settings page of Sell Photos Plugin was found to be vulnerable to stored XSS, as they did not sanitize user given input properly. It is triggered when a users loads a page where the plugin is used, and when an admin opens settings page of the plugin.

Proof of Concept

The PoC will be displayed once the issue has been remediated.

Affects Plugins

nextgen-gallery-sell-photo

No known fix

References

URL

https://packetstormsecurity.com/files/#158878/

URL

https://melbin.in/2020/08/14/stored-xss-vulnerability-in-wordpress-nextgen-gallery-sell-photo-plugin/

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

CVSS

3.5 (low)

Miscellaneous

Original Researcher

Melbin K Mathew

Verified

WPVDB ID

dda76113-cbcd-4d36-bd3e-d768c9047291

Timeline

Publicly Published

2020-08-17 (about 5 years ago)

Added

2020-08-17 (about 5 years ago)

Last Updated

2020-08-19 (about 5 years ago)

Other

Published

Title

Published

2025-04-01

Title

mFolio Lite <= 1.2.3 - Contributor+ Stored XSS

Published

2026-03-23

Title

OOPSpam Anti-Spam: Spam Protection for WordPress Forms & Comments (No CAPTCHA) < 1.2.63 - Unauthenticated Stored Cross-Site Scripting

Published

2023-04-05

Title

Site Reviews < 6.7.1 - Admin+ Stored XSS

Published

2023-06-27

Title

Catalyst Connect Zoho CRM Client Portal < 2.1.0 - Admin+ Stored XSS

Published

2022-05-30

Title

Newsletter < 7.4.6 - Admin+ Stored Cross-Site Scripting