Security Advisory

CVE-2018-1000172

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-04-30 22:00:00
Last updated 2024-09-17 03:13:30
Assigner mitre
State PUBLISHED

Description

Imagely NextGEN Gallery version 2.2.30 and earlier contains a Cross Site Scripting (XSS) vulnerability in Image Alt & Title Text. This attack appears to be exploitable via a victim viewing the image in the administrator page. This vulnerability appears to have been fixed in 2.2.45.