IDCVSSSummaryLast (major) updatePublished
CVE-2020-35582 3.5
A stored cross-site scripting (XSS) issue in Envira Gallery Lite before 1.8.3.3 allows remote attackers to inject arbitrary JavaScript/HTML code via a POST /wp-admin/post.php request with the post_title parameter.
15-01-2021 - 19:06 15-01-2021 - 07:15
CVE-2020-35581 3.5
A stored cross-site scripting (XSS) issue in Envira Gallery Lite before 1.8.3.3 allows remote attackers to inject arbitrary JavaScript/HTML code via a POST /wp-admin/admin-ajax.php request with the meta[title] parameter.
15-01-2021 - 19:12 15-01-2021 - 07:15
Back to Top Mark selected
Back to Top