Back to search
CVE-2021-25041
Published: Dec 6, 2021
Modified: Aug 3, 2024
PUBLISHED
Description
The Photo Gallery by 10Web WordPress plugin before 1.5.68 is vulnerable to Reflected Cross-Site Scripting (XSS) issues via the bwg_album_breadcrumb_0 and shortcode_id GET parameters passed to the bwg_frontend_data AJAX action
| Vendor | Product | Versions |
|---|---|---|
Unknown | Photo Gallery by 10Web – Mobile-Friendly Image Gallery | affected 1.5.68 - < 1.5.68 |
Weaknesses (CWE)
References
https://plugins.trac.wordpress.org/changeset/2467205
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now