WordPress Plugin Vulnerabilities

NextGEN Gallery <= 1.8.3 - XXS & CSRF

Description

The WordPress Gallery Plugin – NextGEN Gallery WordPress plugin was affected by a XXS & CSRF security vulnerability.

Affects Plugins

Plugin icon
nextgen-gallery
Fixed in 1.8.4

Classification

Type
CSRF
OWASP top 10
A2: Broken Authentication and Session Management
CWE
CWE-352

Miscellaneous

Verified
No
WPVDB ID
9014dc25-c538-4e6a-9519-72d8bd428b59

Timeline

Publicly Published
2014-08-01 (about 9 years ago)
Added
2014-08-01 (about 9 years ago)
Last Updated
2015-05-15 (about 8 years ago)

Other

Published
Title
Published
2023-11-07
Title
WooCommerce Product Table Lite < 3.1.0 - CSRF
Published
2021-02-17
Title
Process Steps Template Designer < 1.3 - CSRF to Stored Cross-Site Scripting (XSS)
Published
2021-03-01
Title
Style Kits < 1.8.1 - Cross-Site Request Forgery
Published
2014-08-01
Title
HMS Testimonials 2.0.10 - CSRF
Published
2022-07-08
Title
Counter Box < 1.2.1 - Arbitrary Counter Activation/Deactivation via CSRF