Log out
Get PRO

Latest

Input validation vulnerability in NextGEN Gallery – Create an Amazing Photo Gallery in Seconds 3.59

  • Severity: medium-risk
  • Status: Fixed
  • Publication: April 26, 2024

The NextGEN Gallery plugin for WordPress, which allows users to create photo galleries, has a security vulnerability that could allow hackers to inject harmful code into the plugin’s settings. This could potentially affect any version up to 3.59 and could only be exploited by authenticated attackers with high-level permissions. It mainly affects multi-site installations and those with unfiltered_html disabled.

Detected in:

NextGEN Gallery – Create an Amazing Photo Gallery in Seconds fixed vulnerable versions:
Photo Gallery, Sliders, Proofing and Themes – NextGEN Gallery fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.