Lucene search
China National Vulnerability DatabaseCNVD-2022-66590HistoryMar 02, 2022 - 12:00 a.m.
WordPress GRAND FlaGallery plugin cross-site scripting vulnerability
2022-03-0200:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
0.001 Low
EPSS
Percentile
24.8%
WordPress is the Wordpress Foundation’s suite of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress GRAND FlaGallery plugin 6.1.2 and earlier versions have a cross-site scripting vulnerability that stems from the plugin’s failure to clean up and escape some gallery settings. An attacker could exploit this vulnerability to perform cross-site scripting attacks.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress grand flagallery plugin | le | 6.1.2 |
Related
prion
prion
Cross site scripting
2022-02-28 09:15:00
cve
cve
CVE-2021-24903
2022-02-28 09:15:08
patchstack
patchstack
wpvulndb
wpvulndb
GRAND FlaGallery <= 6.1.2 - Admin+ Stored Cross-Site Scripting
2021-11-12 00:00:00
cvelist
cvelist
nvd
nvd
CVE-2021-24903
2022-02-28 09:15:08
wpexploit
wpexploit
GRAND FlaGallery <= 6.1.2 - Admin+ Stored Cross-Site Scripting
2021-11-12 00:00:00