CVE-2014-2333
11.04.2014, 14:55
Cross-site scripting (XSS) vulnerability in the Lazyest Gallery plugin before 1.1.21 for WordPress allows remote attackers to inject arbitrary web script or HTML via an EXIF tag. NOTE: some of these details are obtained from third party information.
| Vendor | Product | Version |
|---|---|---|
| marcel_brinkkemper | lazyest-gallery | 𝑥 ≤ 1.1.20 |
| marcel_brinkkemper | lazyest-gallery | 1.1 |
| marcel_brinkkemper | lazyest-gallery | 1.1.1 |
| marcel_brinkkemper | lazyest-gallery | 1.1.1.1 |
| marcel_brinkkemper | lazyest-gallery | 1.1.2.1 |
| marcel_brinkkemper | lazyest-gallery | 1.1.3 |
| marcel_brinkkemper | lazyest-gallery | 1.1.3.1 |
| marcel_brinkkemper | lazyest-gallery | 1.1.3.2 |
| marcel_brinkkemper | lazyest-gallery | 1.1.3.3 |
| marcel_brinkkemper | lazyest-gallery | 1.1.4 |
| marcel_brinkkemper | lazyest-gallery | 1.1.5 |
| marcel_brinkkemper | lazyest-gallery | 1.1.6 |
| marcel_brinkkemper | lazyest-gallery | 1.1.7 |
| marcel_brinkkemper | lazyest-gallery | 1.1.7.1 |
| marcel_brinkkemper | lazyest-gallery | 1.1.8 |
| marcel_brinkkemper | lazyest-gallery | 1.1.8.1 |
| marcel_brinkkemper | lazyest-gallery | 1.1.9 |
| marcel_brinkkemper | lazyest-gallery | 1.1.9.1 |
| marcel_brinkkemper | lazyest-gallery | 1.1.10 |
| marcel_brinkkemper | lazyest-gallery | 1.1.10.1 |
| marcel_brinkkemper | lazyest-gallery | 1.1.11 |
| marcel_brinkkemper | lazyest-gallery | 1.1.12 |
| marcel_brinkkemper | lazyest-gallery | 1.1.13 |
| marcel_brinkkemper | lazyest-gallery | 1.1.14 |
| marcel_brinkkemper | lazyest-gallery | 1.1.15 |
| marcel_brinkkemper | lazyest-gallery | 1.1.16 |
| marcel_brinkkemper | lazyest-gallery | 1.1.17.1 |
| marcel_brinkkemper | lazyest-gallery | 1.1.17.2 |
| marcel_brinkkemper | lazyest-gallery | 1.1.17.4 |
| marcel_brinkkemper | lazyest-gallery | 1.1.18 |
| marcel_brinkkemper | lazyest-gallery | 1.1.19 |
| marcel_brinkkemper | lazyest-gallery | 1.1.19.1 |
𝑥
= Vulnerable software versions
References