netsted
Forum Replies Created
Viewing 2 replies - 1 through 2 (of 2 total)
-
Forum: Plugins
In reply to: [Mixed Media Gallery Blocks] Cross Site Scripting (XSS) VulnerabilityThank you for your quick reply! I am the administrator of a few WordPress websites hosted @ one.com. Their hosting solution includes a Health and Security monitoring that yesterday warned about the vulnerablity that I posted. You might want to make contact to the company for further infomation,
Regards,
Michael BForum: Plugins
In reply to: [Mixed Media Gallery Blocks] Cross Site Scripting (XSS) VulnerabilityI have the same issue in my websites, it was reported yesterday Sunday April 6.
From my WordPress Dashboard:
Your website is vulnerable due to SimpLy Gallery Block & LightboxMedium
Current version: 3.2.5 Fix version: Not available
Outdated plugins make your site vulnerable to security attacks. We recommend uninstalling any plugins that you don’t need.
Vulnerabilities
- XSS flaws occur whenever an application includes untrusted data in a new web page without proper validation or escaping, or updates an existing web page with user-supplied data using a browser API to create HTML or JavaScript. XSS allows attackers to execute scripts in the victim’s browser, which can hijack user sessions, deface websites, or redirect the user to malicious sites.
See more details
- XSS flaws occur whenever an application includes untrusted data in a new web page without proper validation or escaping, or updates an existing web page with user-supplied data using a browser API to create HTML or JavaScript. XSS allows attackers to execute scripts in the victim’s browser, which can hijack user sessions, deface websites, or redirect the user to malicious sites.
Viewing 2 replies - 1 through 2 (of 2 total)