Unrated severityNVD Advisory· Published Oct 25, 2021· Updated Aug 3, 2024
Video Gallery - Vimeo and YouTube Gallery < 1.1.5 - Admin+ Stored Cross-Site Scripting
CVE-2021-24515
Description
The Video Gallery WordPress plugin before 1.1.5 does not escape the Title and Description of the videos in a gallery before outputting them in attributes, leading to Stored Cross-Site Scripting issues
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Video Gallerydescription
- Range: <1.1.5
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/6bbea7fe-e966-406b-ad06-0206fcc6f0a0mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.