Lucene search

WpvulndbWPVDB-ID:3C16B844-7185-4620-A12F-A2C9D2EF0FD3

HistoryApr 08, 2024 - 12:00 a.m.

WordPress Gallery Plugin – NextGEN Gallery < 3.59.1 - Missing Authorization to Unauthenticated Information Disclosure

2024-04-0800:00:00

wpscan.com

wordpress

nextgen gallery

authorization

unauthenticated

information disclosure

vulnerable

capability check

exif

metadata

image uploaded

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

6.6 Medium

AI Score

Confidence

High

0.082 Low

EPSS

Percentile

94.4%

JSON

Description The WordPress Gallery Plugin – NextGEN Gallery plugin is vulnerable to unauthorized access of data due to a missing capability check on the get_item function. This makes it possible for unauthenticated attackers to extract sensitive data including EXIF and other metadata of any image uploaded through the plugin.

CPENameOperatorVersion
eq3.59.1

CPE	Name	Operator	Version
		eq	3.59.1

References

www.wordfence.com/threat-intel/vulnerabilities/id/75f87f99-9f0d-46c2-a6f1-3c1ea0176303

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

6.6 Medium

AI Score

Confidence

High

0.082 Low

EPSS

Percentile

94.4%

JSON

Related for WPVDB-ID:3C16B844-7185-4620-A12F-A2C9D2EF0FD3