Unrated severityNVD Advisory· Published Oct 7, 2011· Updated Apr 29, 2026

CVE-2010-4875

Description

Cross-site scripting (XSS) vulnerability in vodpod-video-gallery/vodpod_gallery_thumbs.php in the Vodpod Video Gallery Plugin 3.1.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the gid parameter.

Affected products

Xondie/Vodpod Video Gallery
cpe:2.3:a:xondie:vodpod_video_gallery:3.1.5:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

osvdb.org/69084nvdExploit
packetstormsecurity.org/1011-exploits/wpvodpod-xss.txtnvdExploit
www.johnleitch.net/Vulnerabilities/WordPress.Vodpod.Video.Gallery.3.1.5.Reflected.Cross-site.Scripting/58nvdExploit
secunia.com/advisories/42195nvdVendor Advisory
securityreason.com/securityalert/8431nvd
exchange.xforce.ibmcloud.com/vulnerabilities/63057nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000