CVE-2025-27004

Name of the Vulnerable Software and Affected Versions Famous - Responsive Image And Video Grid Gallery WordPress Plugin versions through 1.4

Description The Famous - Responsive Image And Video Grid Gallery WordPress Plugin contains a flaw due to improper input neutralization during web page generation, leading to a Reflected Cross-site Scripting condition. This allows for the injection of malicious scripts into web pages. The vulnerability exists because the application does not properly sanitize user-supplied input before including it in the generated web page. This can allow an attacker to execute arbitrary JavaScript code in the context of a user's browser. The vulnerable component is related to image and video gallery functionality. The famous grid image and video gallery component is affected.

Recommendations Update Famous - Responsive Image And Video Grid Gallery WordPress Plugin to a version later than 1.4.