Описание
The WordPress Filter Gallery Plugin WordPress plugin before 0.1.6 does not properly escape the filters passed in the ufg_gallery_filters ajax action before outputting them on the page, allowing a high privileged user such as an administrator to inject HTML or javascript to the plugin settings page, even when the unfiltered_html capability is disabled.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.1.6 (исключая)
cpe:2.3:a:wordpress_filter_gallery_project:wordpress_filter_gallery:*:*:*:*:*:wordpress:*:*
EPSS
Процентиль: 45%
0.00226
Низкий
4.8 Medium
CVSS3
Дефекты
Связанные уязвимости
CVSS3: 4.8
github
около 3 лет назад
The WordPress Filter Gallery Plugin WordPress plugin before 0.1.6 does not properly escape the filters passed in the ufg_gallery_filters ajax action before outputting them on the page, allowing a high privileged user such as an administrator to inject HTML or javascript to the plugin settings page, even when the unfiltered_html capability is disabled.
EPSS
Процентиль: 45%
0.00226
Низкий
4.8 Medium
CVSS3