Threat Encyclopedia

Imagely.NextGEN.ImageAttr.XSS

description-logoDescription

This indicates an attack attempt against a Cross-Site Scripting vulnerability in Imagely NextGEN Gallery WordPress Gallery Plugin.
The vulnerability is due to inadequate filtering in the image attributes part which leads to XSS vulnerabilities.

affected-products-logoAffected Products

NextGEN Gallery before 2.2.45.

Impact

Cross-Site Scripting

recomended-action-logoRecommended Actions

Apply the latest update from the vendor.
https://wordpress.org/plugins/nextgen-gallery/#developers

CVE References

CVE-2018-1000172