Cross-site scripting (XSS) is a type of vulnerability in the GRAND FlAGallery plugin (flash-album-gallery) for WordPress that lets attackers insert malicious web scripts or HTML into the website. This vulnerability exists in the facebook.php file of the plugin before version 1.57.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
