The WP Photo Album Plus WordPress plugin before 8.0.10 was vulnerable to Stored Cross-Site Scripting (XSS). Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.
WordPress
XSS
Wp Photo Album Plus
NVD
WPScan
VulDB
CVSS 3.1
6.4
EPSS
0.2%