WordPress Gallery Plugin – NextGEN Gallery < 3.59.1 – Missing Authorization to Unauthenticated Information Disclosure | CVE 2024-3097 | Plugin Vulnerabilities

Description

The WordPress Gallery Plugin – NextGEN Gallery plugin is vulnerable to unauthorized access of data due to a missing capability check on the get_item function. This makes it possible for unauthenticated attackers to extract sensitive data including EXIF and other metadata of any image uploaded through the plugin.

Affects Plugins

nextgen-gallery

Fixed in 3.59.1

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/75f87f99-9f0d-46c2-a6f1-3c1ea0176303

Classification

Type

NO AUTHORISATION

OWASP top 10

A5: Broken Access Control

CWE

CVSS

Miscellaneous

Original Researcher

Peng Zhou

Verified

No

WPVDB ID

3c16b844-7185-4620-a12f-a2c9d2ef0fd3

Timeline

Publicly Published

2024-04-05 (about 2 years ago)

Added

2024-04-08 (about 2 years ago)

Last Updated

2024-04-08 (about 2 years ago)

Other

Published

Title

Published

2025-04-02

Title

Apptivo Business Site CRM < 5.4 - Unauthenticated Arbitrary Content Deletion

Published

2023-01-04

Title

Show-Hide / Collapse-Expand <= 1.2.5 - Subscriber+ Settings Update

Published

2024-05-03

Title

ShopLentor (formerly WooLentor) < 2.8.8 - Missing Authorization

Published

2025-10-05

Title

Conversios.io < 7.2.14 - Missing Authorization

Published

2025-01-08

Title

linkID <= 0.1.2 - Missing Authorization to Unauthenticated Sensitive Information Exposure