Unrated severityNVD Advisory· Published Jun 14, 2021· Updated Aug 3, 2024
FooGallery < 2.0.35 - Authenticated Stored Cross-Site Scripting
CVE-2021-24357
Description
In the Best Image Gallery & Responsive Photo Gallery – FooGallery WordPress plugin before 2.0.35, the Custom CSS field of each gallery is not properly sanitised or validated before being being output in the page where the gallery is embed, leading to a stored Cross-Site Scripting issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- FooPlugins/Best Image Gallery & Responsive Photo Gallery – FooGalleryv5Range: 2.0.35
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/950f46ae-4476-4969-863a-0e55752953b3mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.