Cross-Site Request Forgery (CSRF) leading to XSS and RCE via file upload and LFI WordPress Gallery Plugin – NextGEN Gallery (установок плагина более 800к) https://www.wordfence.com/blog/2021/02/severe-vulnerabilities-patched-in-nextgen-gallery-affect-over-800000-wordpress-sites 2.7K viewsedited 05:01