VYPR
Unrated severityNVD Advisory· Published Jun 14, 2021· Updated Aug 3, 2024

FooGallery < 2.0.35 - Authenticated Stored Cross-Site Scripting

CVE-2021-24357

Description

In the Best Image Gallery & Responsive Photo Gallery – FooGallery WordPress plugin before 2.0.35, the Custom CSS field of each gallery is not properly sanitised or validated before being being output in the page where the gallery is embed, leading to a stored Cross-Site Scripting issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.