WordPress Video Gallery - YouTube Gallery And Vimeo Gallery 2.3.6 SQL Injection

Cinema Booking System 1.0 SQL Injection / Cross Site Request Forgery

Gentoo Linux Security Advisory 202407-17

Gentoo Linux Security Advisory 202407-16

Ubuntu Security Notice USN-6879-1

WordPress Photo Gallery plugin version 1.8.26 suffers from a persistent cross site scripting vulnerability.

    # Exploit Title: Wordpress Photo Gallery Version 1.8.26 Stored XSS# Date: 2024-07-03# Exploit Author: tmrswrr# Category : Webapps# Vendor Homepage: https://10web.io/plugins/wordpress-photo-gallery/# Version 1.8.26### Steps to Execute the Payload:1. Click Photo Gallery > Themes > Edit Themes > https://127.0.0.1/wp-admin/admin.php?page=themes_bwg&task=edit&current_id=2 2. Write Distance between pictures place your payload**: `"onmouseover="alert(1)"style="position:absolute;width:100%;height:100%;top:0;left:0;"qq9r3`3. Click Update4. You will see the payload executed

Headline

WordPress Photo Gallery 1.8.26 Cross Site Scripting

Packet Storm: Latest News