Secunia Security Advisory – Alejandro Rodriguez has reported a vulnerability in the NextGEN Gallery plugin for WordPress, which can be exploited by malicious people to conduct cross-site scripting attacks.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/88555/sa39341.txt
Source: https://packetstormsecurity.com/files/88555/Secunia-Security-Advisory-39341.html