26Mar
CVE-2024-29832 | 10Web PhotoGallery Plugin up to 1.8.21 on WordPress admin-ajax.php current_url cross site scripting
A vulnerability was found in 10Web PhotoGallery Plugin up to 1.8.21 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality of the file admin-ajax.php. The manipulation of the argument current_url leads to cross site scripting. This vulnerability is handled as CVE-2024-29832. The attack may be launched remotely. There is no exploit available.