Authenticated (author or higher role) Stored Cross-Site Scripting (XSS) in Contest Gallery (WordPress plugin) <= 13.1.0.9
References
Link | Resource |
---|---|
https://patchstack.com/database/vulnerability/contest-gallery/wordpress-contest-gallery-plugin-13-1-0-9-authenticated-stored-cross-site-scripting-xss-vulnerability | Release Notes Third Party Advisory |
https://wordpress.org/plugins/contest-gallery/ | Product |
Configurations
History
No history.
Information
Published : 2022-04-18 17:15
Updated : 2024-02-28 19:09
NVD link : CVE-2022-27853
Mitre link : CVE-2022-27853
CVE.ORG link : CVE-2022-27853
JSON object : View
Products Affected
contest-gallery
- contest_gallery
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')