NuytsTech Security

CVE-2021-25041

by ·

The Photo Gallery by 10Web WordPress plugin before 1.5.68 is vulnerable to Reflected Cross-Site Scripting (XSS) issues via the bwg_album_breadcrumb_0 and shortcode_id GET parameters passed to the bwg_frontend_data AJAX action

Date published : 2021-12-06

https://plugins.trac.wordpress.org/changeset/2467205

https://wpscan.com/vulnerability/32aee3ea-e0af-44da-a16c-102c83eaed8f

Tags: