Documentation: Home / Vulnerabilities / Input validation vulnerability in Jquery plugin PrettyPhoto.js (34 plugins affected)

Latest

Input validation vulnerability in Jquery plugin PrettyPhoto.js (34 plugins affected)

CVE-2013-6837

Severity: medium-risk
Status: Open
Publication: August 1, 2014

A security issue has been found in prettyPhoto 3.1.4 and earlier versions. This issue allows someone who is not authorized to inject code into the website

Detected in:

dp-maintenance-mode-lite fixed vulnerable versions: >= * <= *

eHive Account Details fixed vulnerable versions: >= * < 2.1.3

eHive Object Details fixed vulnerable versions: >= * < 2.1.7

fancyflickr fixed vulnerable versions: >= * <= *

FoxyShop fixed vulnerable versions: >= * < 4.6.1

Image Slider fixed vulnerable versions: >= * < 1.1.7

jcwp youtube channel embed fixed vulnerable versions: >= * < 2.0.0

lb-tube-video fixed vulnerable versions: >= * <= *

matrix-image-gallery fixed vulnerable versions: >= * <= *

mytreasures fixed vulnerable versions: >= * <= *

Random image gallery with pretty photo zoom fixed vulnerable versions: >= * < 7.5

ReFlex Gallery » WordPress Photo Gallery fixed vulnerable versions: >= * < 3.1.5

Responsive Lightbox & Gallery fixed vulnerable versions: >= * < 1.4.12

responsive-category-slider fixed vulnerable versions: >= * <= *

s2member Secure File Browser fixed vulnerable versions: >= * < 0.4.17

TallyKit fixed vulnerable versions: >= * < 5.5

ticket-manager fixed vulnerable versions: >= * <= *

WP Portfolio Gallery fixed vulnerable versions: >= * < 1.2.0

WP Video Lightbox fixed vulnerable versions: >= * < 1.7.5

wp-business-directory fixed vulnerable versions: >= * <= *

WPPizza – A Restaurant Plugin fixed vulnerable versions: >= * < 2.11.8.18

Alpine Photo Tile for Instagram open vulnerable versions: >= * < 1.2.7.5

Apizee Contact – Live Chat Plugin open vulnerable versions: >= * < 1.1

Contact Bank – Contact Form Builder for WordPress open vulnerable versions: >= * < 2.0.227

embedplus-for-wordpress open vulnerable versions: >= * < 5.4

Gallery Bank – WordPress Photo Gallery Plugin open vulnerable versions: >= * < 3.0.229

Images Lazyload and Slideshow open vulnerable versions: >= * < 3.3

mklasens-photobox open vulnerable versions: >= * <= *

MyBlogU open vulnerable versions: >= * < 0.0.8

Onclick show popup open vulnerable versions: >= * < 6.6

TreXanh Property open vulnerable versions: >= * <= 0.1

webrotate-360-product-viewer open vulnerable versions: >= * < 2.5.2

WP Easy Gallery – WordPress Gallery Plugin open vulnerable versions: >= * < 4.1.1

wp-instagram-bank open vulnerable versions: >= * <= *

Open source

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Incorrect?

Is this information incorrect? Please leave us a message.

Latest

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 not found errors

Protecting site visitors with Security Headers

Hardening your website’s security

Input validation vulnerability in Jquery plugin PrettyPhoto.js (34 plugins affected)

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles

Latest

Passkeys: no need for Limit Login Attempts?

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 not found errors

Protecting site visitors with Security Headers

Hardening your website’s security

Input validation vulnerability in Jquery plugin PrettyPhoto.js (34 plugins affected)

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles