[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f0vj90QWybd45u-PWLhRIW8HBI3EWqjmJ-jHi6OxVFek":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2015-2324","photo-gallery-by-10web-authenticated-cross-site-scripting-3","Photo Gallery by 10Web \u003C= 1.2.12 - Authenticated Cross-Site Scripting","Cross-site scripting (XSS) vulnerability in the filemanager in the Photo Gallery plugin before 1.2.13 for WordPress allows remote authenticated users with edit permission to inject arbitrary web script or HTML via unspecified vectors.","photo-gallery",null,"\u003C1.2.13","1.2.13","medium",5.4,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2015-03-13 00:00:00","2024-01-22 19:56:02",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fce8e5635-a343-40b4-838c-21b942af5242?source=api-prod",3238]