CVE-2022-0186
Image Photo Gallery Final Tiles Grid < 3.5.3 - Contributor+ Stored Cross-Site Scripting
The Image Photo Gallery Final Tiles Grid WordPress plugin before 3.5.3 does not sanitise and escape the Description field when editing a gallery, allowing users with a role as low as contributor to perform Cross-Site Scripting attacks against other users having access to the gallery dashboard
Productos afectados
Unknown · Image Photo Gallery Final Tiles Grid¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →