WordPress GRAND Flash Album Gallery 'admin.php' Cross Site Scripting Vulnerability

WordPress GRAND Flash Album Gallery 'admin.php' Cross Site Scripting Vulnerability

Attackers can exploit this issue by enticing an unsuspecting victim to follow a malicious URI.

The following example URI is available:

http://www.example.com/wp-admin/admin.php?page=flag-skins&skin=%22%3E%3Cscript%3Ealert%281%29%3C/script%3E