1 results (0.028 seconds)
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-15779 – Social Feed Gallery <= 2.4.7 - Cross-Site Request Forgery
https://notcve.org/view.php?id=CVE-2019-15779
12 Aug 2019 — The insta-gallery plugin before 2.4.8 for WordPress has no nonce validation for qligg_dismiss_notice or qligg_form_item_delete. El plugin insta-gallery versiones anteriores a 2.4.8 para WordPress, no posee comprobación de nonce para la función qligg_dismiss_notice o qligg_form_item_delete. • https://wordpress.org/plugins/insta-gallery/#developers • CWE-352: Cross-Site Request Forgery (CSRF) •