Security report for CVE WP Photo Album Plus > CVE-2021-25115
- CVE
- Application
- Date
- Jun 07, 2024, 07:06:15
- Research Description
- The WP Photo Album Plus WordPress plugin before 8.0.10 was vulnerable to Stored Cross-Site Scripting (XSS). Error log content was handled improperly, therefore any user, even unauthenticated, could cause arbitrary javascript to be executed in the admin panel.
- Status
-
vulnerableMedium
- Actual on
- Oct 06, 2024, 07:10:40