WordPress Photo Gallery by Supsystic plugin <= 1.8.5 - Cross Site Scripting (XSS)
- Photo Gallery by Supsystic
- Because of this vulnerability, the attackers can steal users' session tokens or perform arbitrary actions on their behalf.
- Update the plugin.
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
- Name CVE-N/A
Fixed In 1.8.6
- Disclosure date