Security Advisory

CVE-2008-7175

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-09-08 10:00:00

Last updated 2024-08-07 11:56:14

Assigner mitre

State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in wp-admin/admin.php in NextGEN Gallery 0.96 and earlier plugin for Wordpress allows remote attackers to inject arbitrary web script or HTML via the picture description field in a page edit action.

← Browse all CVEs View on cve.org ↗