CVE-2023-29439
published 2023-05-16CVE-2023-29439: Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in FooPlugins FooGallery plugin <= 2.2.35 versions.
PriorityP336medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
EXPLOIT
EPSS
1.75%
75.0th percentile
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in FooPlugins FooGallery plugin <= 2.2.35 versions.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| fooplugins | foogallery | <= 2.2.35 | — |
| fooplugins | foogallery | n/a – 2.2.35 | — |
Detection & IOCsextracted from sources · hover to see the quote
otheralert(document.domain)
sigma
words: - 'foogallery-image-edit-modal' condition: and - type: word part: header words: - "text/html" - type: status status: - 200
- →Reflected XSS payload probe uses alert(document.domain) as the injected JavaScript, detectable in HTTP response body for unauthenticated requests to FooGallery plugin endpoints.
- →Detection signature keys on the presence of 'foogallery-image-edit-modal' string in the HTTP response body, combined with Content-Type: text/html header and HTTP 200 status code.
- ·Vulnerability affects FooGallery plugin versions up to and including 2.2.35; ensure detection rules are scoped to these versions.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Nuclei
FooGallery plugin <= 2.2.35 - Cross-Site Scripting
nuclei·CVSS 6.1
CVE-2023-29439 [MEDIUM] FooGallery plugin <= 2.2.35 - Cross-Site Scripting
FooGallery plugin alert(document.domain)"'
- 'foogallery-image-edit-modal'
condition: and
- type: word
part: header
words:
- "text/html"
- type: status
status:
- 200
# digest: 4a0a00473045022100d2716922efa78635dd04f9874e625ac3afed1b87d87e4a1f2762b3273c5ac46302203ef81ee6ec3e3d0b19d42336d8e2cbd6234a13c4f1acd3202f0ddb2d89dc0f61:922c64590222798bb761d5b6d8e72950
No writeups or analysis indexed.
https://lourcode.kr/posts/CVE-2023-29439-Analysis?_s_id=cvehttps://patchstack.com/database/vulnerability/foogallery/wordpress-foogallery-plugin-2-2-35-reflected-cross-site-scripting-xss-vulnerability?_s_id=cvehttps://lourcode.kr/posts/CVE-2023-29439-Analysis?_s_id=cvehttps://patchstack.com/database/vulnerability/foogallery/wordpress-foogallery-plugin-2-2-35-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve
2023-05-16
Published