Descrição
The Image Photo Gallery Final Tiles Grid WordPress plugin before 3.5.3 does not sanitise and escape the Description field when editing a gallery, allowing users with a role as low as contributor to perform Cross-Site Scripting attacks against other users having access to the gallery dashboard
Software
Não informado
Tipo Software
Plugin
CVE
CVE-2022-0186
Tags
Nâo informado
Data de publicação
21/02/2022
Última atualização
08/12/2024
Pontuação em CVSS 3.0
5.4
Médio