Cheat sheets

CVE-2020-9335: WordPress plugin vulnerabilty

Share this with people that should know this:

Multiple stored XSS vulnerabilities exist in the 10Web Photo Gallery plugin before 1.5.46 WordPress. Successful exploitation of this vulnerability would allow a authenticated admin user to inject arbitrary JavaScript code that is viewed by other users.

References

  • wordpress.org/plugins/photo-gallery/#developers
  • wpvulndb.com/vulnerabilities/10088
  • Share this with people that should know this: