Vulnerability Details CVE-2022-42485
Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Galaxy Weblinks Gallery with thumbnail slider plugin <= 6.0 versions.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.3%
CVSS Severity
CVSS v3 Score 5.4
References
- https://patchstack.com/database/vulnerability/gallery-with-thumbnail-slider/wordpress-gallery-with-thumbnail-slider-plugin-6-0-auth-stored-cross-site-scripting-xss-vulnerability?_s_id=cve
- https://patchstack.com/database/vulnerability/gallery-with-thumbnail-slider/wordpress-gallery-with-thumbnail-slider-plugin-6-0-auth-stored-cross-site-scripting-xss-vulnerability?_s_id=cve
Products affected by CVE-2022-42485
-
cpe:2.3:a:galaxyweblinks:gallery_with_thumbnail_slider:1.0
-
cpe:2.3:a:galaxyweblinks:gallery_with_thumbnail_slider:2.0
-
cpe:2.3:a:galaxyweblinks:gallery_with_thumbnail_slider:3.0
-
cpe:2.3:a:galaxyweblinks:gallery_with_thumbnail_slider:4.0
-
cpe:2.3:a:galaxyweblinks:gallery_with_thumbnail_slider:5.0
-
cpe:2.3:a:galaxyweblinks:gallery_with_thumbnail_slider:6.0