WordPress Ungallery plugin <= 2.2.4 - Stored XSS via CSRF vulnerability

Stored XSS via CSRF vulnerability discovered by Bob Matyas in WordPress Plugin UnGallery versions = 2.2.4...

WordPress UnGallery Plugin <= 2.2.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software UnGallery Type Plugin Vulnerable versions = 2.2.4 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-3582 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID a683aa770e00 Credits Bob Matyas Required privileg...

CVE-2024-3582

The UnGallery WordPress plugin through 2.2.4 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

CVE-2024-3582

The UnGallery WordPress plugin through 2.2.4 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

WordPress plugin UnGallery 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

CVE-2024-3582 Ungallery <= 2.2.4 - Stored XSS via CSRF

The UnGallery WordPress plugin through 2.2.4 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

CVE-2024-3582 Ungallery <= 2.2.4 - Stored XSS via CSRF

The UnGallery WordPress plugin through 2.2.4 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

CVE-2024-3582

The CVE-2024-3582 entry covers the Ungallery WordPress plugin (≤ 2.2.4). It identifies missing CSRF checks, sanitization, and escaping, enabling a Stored XSS payload to be added by a logged-in admin via CSRF. The vulnerability impact is Stored XSS in admin-facing flows; there is no publicly docum...

PT-2024-26752 · WordPress · The Ungallery

Name of the Vulnerable Software and Affected Versions: The UnGallery WordPress plugin versions 2.2.4 and earlier Description: The issue concerns a lack of CSRF check in some areas and missing sanitization as well as escaping. This could allow attackers to make logged-in admins add Stored XSS...

Ungallery <= 2.2.4 - Stored XSS via CSRF

Description The plugin does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack Make a logged in admin open an HTML file containing the following: /" alert2' Save Changes...

Ungallery <= 2.2.4 - Stored XSS via CSRF

Description The plugin does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack PoC Make a logged in admin open an HTML file containing the following: Save Changes...

WordPress UnGallery Plugin <= 2.1.5 - Arbitrary Command Execution

This plugin is prone to "search" arbitrary command execution vulnerability. Solution Update plugin...

UnGallery <= 1.5.8 - Local File Disclosure

The UnGallery WordPress plugin was affected by a Local File Disclosure security vulnerability...

UnGallery - Arbitrary Comm& Execution

The UnGallery WordPress plugin was affected by an Arbitrary Comm& Execution security vulnerability...

WordPress UnGallery plugin <= 1.5.8 - Local File Disclosure Vulnerability

No description provided by source...

WordPress UnGallery 'zip' Parameter Local File Disclosure Vulnerability

The UnGallery plug-in for WordPress is prone to a local file- disclosure vulnerability because it fails to adequately validate user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...

WordPress UnGallery 'source_vuln.php' Local File Disclosure Vulnerability

The UnGallery plug-in for WordPress is prone to a local file- disclosure vulnerability because it fails to adequately validate user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...

WordPress UnGallery 1.5.8 File Disclosure

Exploit Title: WordPress UnGallery plugin = 1.5.8 Local File Disclosure Vulnerability Date: 2011-08-20 Author: Miroslav Stampar miroslav.stamparatgmail.com @stamparm Software Link: http://downloads.wordpress.org/plugin/ungallery.1.5.8.zip Version: 1.5.8 tested --- PoC --- !/bin/python import...

WordPress UnGallery plugin &lt;= 1.5.8 Local File Disclosure Vulnerability

No description provided by source. Exploit Title: WordPress UnGallery plugin = 1.5.8 Local File Disclosure Vulnerability Date: 2011-08-20 Author: Miroslav Stampar miroslav.stamparatgmail.com @stamparm Software Link: http://downloads.wordpress.org/plugin/ungallery.1.5.8.zip Version: 1.5.8 tested -...

WordPress Plugin UnGallery 1.5.8 - Local File Disclosure

WordPress Plugin UnGallery 1.5.8 - Local File Disclosure Exploit Title: WordPress UnGallery plugin = 1.5.8 Local File Disclosure Vulnerability Date: 2011-08-20 Author: Miroslav Stampar miroslav.stamparatgmail.com @stamparm Software Link: http://downloads.wordpress.org/plugin/ungallery.1.5.8.zip...