CVE-2019-15829 – Gallery PhotoBlocks <= 1.1.42 - Reflected Cross-Site Scripting

https://notcve.org/view.php?id=CVE-2019-15829

09 Jul 2019 — The photoblocks-grid-gallery plugin before 1.1.33 for WordPress has wp-admin/admin.php?page=photoblocks-edit&id= XSS. El plugin photoblocks-grid-gallery anterior a la versión 1.1.33 para WordPress tiene wp-admin / admin.php? Page = photoblocks-edit & id = XSS. The photoblocks-grid-gallery plugin before 1.1.43 for WordPress has wp-admin/admin.php? • https://wordpress.org/plugins/photoblocks-grid-gallery/#developers • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •