Описание
A stored XSS vulnerability exists in the Modula Image Gallery plugin before 2.2.5 for WordPress. Successful exploitation of this vulnerability would allow an authenticated low-privileged user to inject arbitrary JavaScript code that is viewed by other users.
Ссылки
- Third Party Advisory
- Release NotesThird Party Advisory
- Vendor Advisory
- Third Party Advisory
- Third Party Advisory
- Release NotesThird Party Advisory
- Vendor Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.2.5 (исключая)
cpe:2.3:a:wpchill:modula_image_gallery:*:*:*:*:*:wordpress:*:*
EPSS
Процентиль: 76%
0.00977
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79
Связанные уязвимости
CVSS3: 5.4
github
больше 3 лет назад
A stored XSS vulnerability exists in the Modula Image Gallery plugin before 2.2.5 for WordPress. Successful exploitation of this vulnerability would allow an authenticated low-privileged user to inject arbitrary JavaScript code that is viewed by other users.
EPSS
Процентиль: 76%
0.00977
Низкий
5.4 Medium
CVSS3
3.5 Low
CVSS2
Дефекты
CWE-79