CVE-2020-9335

Multiple stored XSS vulnerabilities exist in the 10Web Photo Gallery plugin before 1.5.46 WordPress. Successful exploitation of this vulnerability would allow a authenticated admin user to inject arbitrary JavaScript code that is viewed by other users.
References
Link Resource
https://wordpress.org/plugins/photo-gallery/#developers Release Notes Third Party Advisory
https://wpvulndb.com/vulnerabilities/10088 Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:10web:photo_gallery:*:*:*:*:*:wordpress:*:*

Information

Published : 2020-02-25 05:15

Updated : 2020-02-25 07:18


NVD link : CVE-2020-9335

Mitre link : CVE-2020-9335

Products Affected
No products.
CWE