CVE-2013-3261

EPSS 0.27%
Veröffentlicht 01.06.2013 14:21:06
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle PSIRT-CNA@flexerasoftware.com
CVE-Watchlists
Login
Unerledigt
Login

Album and Image Gallery with Lightbox – Flagallery Photo Portfolio < 2.72 - Cross-Site Scripting

Cross-site scripting (XSS) vulnerability in wp-admin/admin.php in the GRAND FlAGallery plugin before 2.72 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parameter in a flag-manage-gallery action.

Mögliche Gegenmaßnahme

Album and Image Gallery with Lightbox – Flagallery Photo Portfolio: Update to version 2.72, or a newer patched version

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 6

Weitere Schwachstelleninformationen

SystemWordPress Plugin

≫

Produkt Album and Image Gallery with Lightbox – Flagallery Photo Portfolio

Version *-2.71

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Photogallerycreator ≫ Flash-album-gallery Version <= 2.71

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.29

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.32

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.33

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.34

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.35

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.36

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.37

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.38

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.39

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.39 Updatepl1

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.39 Updatepl2

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.39 Updatepl3

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.40

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.41

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.42

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.43

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.44

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.45

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.46

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.49

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.50

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.52

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.53

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.54

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.55

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.56

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.57

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.58

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.58 Updatepl1

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.59

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.60

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version0.61

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.11

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.12

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.13

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.20

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.21

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.22

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.23

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.31

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.32

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.33

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.40

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.41

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.42

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.43

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.44

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.45

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.47

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.48

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.49

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.50

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.51

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.52

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.53

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.54

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.55

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.56

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.57

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.58

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.59

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.60

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.61

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.62

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.63

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.64

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.65

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.66

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.67

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.70

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.71

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.72

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.73

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.74

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.75

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.76

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.77

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.78

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.79

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.80

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.81

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.82

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.83

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.84

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.85

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version1.90

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.00

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.10

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.11

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.12

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.14

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.15

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.16

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.17

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.18

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.50

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.51

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.52

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.53

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.54

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.55

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.56

Wordpress ≫ Wordpress Version-

Photogallerycreator ≫ Flash-album-gallery Version2.70

Wordpress ≫ Wordpress Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.27%	0.504

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	4.3	8.6	2.9	AV:N/AC:M/Au:N/C:N/I:P/A:N

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

http://secunia.com/advisories/53111

Vendor Advisory

http://wordpress.org/plugins/flash-album-gallery/changelog/

https://www.wordfence.com/threat-intel/vulnerabilities/id/582a536c-950e-424b-80a7-83608d220b87

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2013-3261

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-3261

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-3261

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2013-3261