CVE-2014-8491

Published: 2017-10-18T14:29Z

Last Modified: 2024-11-21T02:19Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

The Grand Flagallery plugin before 4.25 for WordPress allows remote attackers to obtain the installation path via a request to (1) flagallery-skins/banner_widget_default/gallery.php or (2) flash-album-gallery/skins/banner_widget_default/gallery.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt