Description
qdPM 9.1 suffers from Cross-site Scripting (XSS) in the search[keywords] parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin Wp-ImageZoom SQL Injection (1.0.7)
Drupal Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-2153)
Drupal Other Vulnerability (CVE-2022-25275)
WordPress Plugin Gallery by BestWebSoft Arbitrary File Disclosure (3.8.3)
Oracle Database Server CVE-2011-2232 Vulnerability (CVE-2011-2232)