WordPress Plugin Vulnerabilities

NextGEN Gallery < 2.1.9 - Authenticated Path Traversal

Description

The WordPress Gallery Plugin – NextGEN Gallery WordPress plugin was affected by an Authenticated Path Traversal security vulnerability.

Affects Plugins

Plugin icon
nextgen-gallery
Fixed in 2.1.9

References

URL
auxiliary/scanner/http/wp_nextgen_galley_file_read
URL
https://github.com/espreto/wpsploit/blob/master/documentation/auxiliary/wp_nextgen_gallery_dir_read.md
URL
https://web.archive.org/web/20181021204353/https://permalink.gmane.org/gmane.comp.security.oss.general/17650

Classification

Type
LFI
OWASP top 10
A1: Injection
CWE
CWE-22
CVSS
6.8 (medium)

Miscellaneous

Submitter
ethicalhack3r
Submitter twitter
ethicalhack3r
Verified
No
WPVDB ID
16e10990-4f4a-43ed-89d4-008f4db3c95f

Timeline

Publicly Published
2015-08-28 (about 10 years ago)
Added
2015-08-28 (about 10 years ago)
Last Updated
2021-02-08 (about 5 years ago)

Other

Published
Title
Published
2026-01-13
Title
Gotham Block Extra Light < 1.6.0 - Authenticated (Contributor+) Arbitrary File Read via 'ghostban' Shortcode
Published
2024-05-17
Title
Download Plugins and Themes from Dashboard < 1.8.6 - Authenticated (Admin+) Arbitrary File Download
Published
2025-08-15
Title
WPGYM - Wordpress Gym Management System <= 67.7.0 - Authenticated (Subscriber+) Local File Inclusion to Privilege Escalation via Password Update
Published
2025-05-09
Title
WordPress Review Plugin: The Ultimate Solution for Building a Review Website <= 5.3.5 - Authenticated (Contributor+) Local File Inclusion via Post Custom Fields
Published
2026-04-21
Title
Contact Form Extender for Divi – Submissions DB & Extra Fields < 1.0.7 - Unauthenticated Arbitrary File Deletion