WordPress Plugin Vulnerabilities

NextGEN Gallery < 2.0.77.3 - CSRF & Arbitrary File Upload

Description

There are two vulnerabilities which can allow an attacker to gain full access over the web application. The vulnerabilities lie in how the application validates user uploaded files and lack of security measures preventing unwanted HTTP requests.

Affects Plugins

Plugin icon
nextgen-gallery
Fixed in 2.0.77.3

References

CVE
CVE-2015-1784
CVE
CVE-2015-1785
URL
https://blog.nettitude.com/uk/crsf-and-unsafe-arbitrary-file-upload-in-nextgen-gallery-plugin-for-wordpress

Miscellaneous

Submitter
Louie Augarde
Submitter twitter
Nettitude_com
Verified
No
WPVDB ID
c894727a-b779-4583-a860-13c2c27275d4

Timeline

Publicly Published
2015-03-25 (about 10 years ago)
Added
2015-03-25 (about 10 years ago)
Last Updated
2021-02-08 (about 4 years ago)

Other

Published
Title
Published
2021-06-29
Title
Super Progressive Web Apps < 2.1.13 - Authenticated (High Privileged) Arbitrary File Upload to RCE
Published
2024-10-09
Title
ACF Images Search And Insert <= 1.1.4 - Authenticated (Subscriber+) Arbitrary File Upload
Published
2014-08-01
Title
Rich Widget - File Upload
Published
2024-10-25
Title
Automatic Translation <= 1.0.4 - Unauthenticated Arbitrary File Upload
Published
2024-09-09
Title
Bit File Manager – 100% Free & Open Source File Manager and Code Editor for WordPress < 6.5.6 - Authenticated (Subscriber+) Arbitrary File Upload