Unrated severityNVD Advisory· Published Jan 1, 2015· Updated Jun 16, 2026
CVE-2011-5307
CVE-2011-5307
Description
Cross-site scripting (XSS) vulnerability in index.php in the PhotoSmash plugin 1.0.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the action parameter.
Affected products
2- cpe:2.3:a:photosmash_project:photosmash:1.01:*:*:*:*:wordpress:*:*
- Range: <=1.0.1
Patches
Vulnerability mechanics
References
1- www.htbridge.com/advisory/HTB22867nvdExploit
News mentions
0No linked articles in our index yet.