• caglararli@hotmail.com
  • 05386281520

CVE-2024-12696 | Picture Gallery Plugin up to 1.5.22 on WordPress Shortcode videowhisper_picture_upload_guest cross site scripting

Çağlar Arlı      -    7 Views

CVE-2024-12696 | Picture Gallery Plugin up to 1.5.22 on WordPress Shortcode videowhisper_picture_upload_guest cross site scripting

A vulnerability classified as problematic has been found in Picture Gallery Plugin up to 1.5.22 on WordPress. This affects the function videowhisper_picture_upload_guest of the component Shortcode Handler. The manipulation leads to cross site scripting. This vulnerability is uniquely identified as CVE-2024-12696. It is possible to initiate the attack remotely. There is no exploit available.