CVE-2010-4875
Vodpod Video Gallery Plugin <3.1.5 - XSS
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in vodpod-video-gallery/vodpod_gallery_thumbs.php in the Vodpod Video Gallery Plugin 3.1.5 for WordPress allows remote attackers to inject arbitrary web script or HTML via the gid parameter.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by John Leitch · textwebappsphp
https://www.exploit-db.com/exploits/34976
References (6)
Scores
EPSS
0.0168
EPSS Percentile
81.9%
Classification
CWE
CWE-79
Status
draft
Affected Products (1)
xondie/vodpod_video_gallery
Timeline
Published
Oct 07, 2011
Tracked Since
Feb 18, 2026