.. / CVE-2019-15829

Exploit for Gallery Photoblocks < 1.1.43 - Cross-Site Scripting (CVE-2019-15829)

Description:

The Gallery PhotoBlocks WordPress plugin was affected by an Authenticated Reflected XSS security vulnerability.

Nuclei Template

View the template here CVE-2019-15829.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2019/CVE-2019-15829.yaml
Copy

References:

https://wordpress.org/plugins/photoblocks-grid-gallery/
https://wpscan.com/vulnerability/b8d1d88e-f2e5-4212-af34-c91f563f07b6/
https://wordpress.org/plugins/photoblocks-grid-gallery/#developers
https://wpvulndb.com/vulnerabilities/9443
https://nvd.nist.gov/vuln/detail/CVE-2019-15829