Documentation: Home / Vulnerabilities / Input validation vulnerability in Jquery plugin PrettyPhoto.js (34 plugins affected)

Latest

Input validation vulnerability in Jquery plugin PrettyPhoto.js (34 plugins affected)

CVE-2013-6837

Severity: medium-risk
Status: Open
Publication: August 1, 2014

A security issue has been found in prettyPhoto 3.1.4 and earlier versions. This issue allows someone who is not authorized to inject code into the website

Detected in:

dp-maintenance-mode-lite fixed vulnerable versions: >= * <= *

eHive Account Details fixed vulnerable versions: >= * < 2.1.3

eHive Object Details fixed vulnerable versions: >= * < 2.1.7

fancyflickr fixed vulnerable versions: >= * <= *

FoxyShop fixed vulnerable versions: >= * < 4.6.1

Image Slider fixed vulnerable versions: >= * < 1.1.7

jcwp youtube channel embed fixed vulnerable versions: >= * < 2.0.0

lb-tube-video fixed vulnerable versions: >= * <= *

matrix-image-gallery fixed vulnerable versions: >= * <= *

mytreasures fixed vulnerable versions: >= * <= *

Random image gallery with pretty photo zoom fixed vulnerable versions: >= * < 7.5

ReFlex Gallery » WordPress Photo Gallery fixed vulnerable versions: >= * < 3.1.5

Responsive Lightbox & Gallery fixed vulnerable versions: >= * < 1.4.12

responsive-category-slider fixed vulnerable versions: >= * <= *

s2member Secure File Browser fixed vulnerable versions: >= * < 0.4.17

TallyKit fixed vulnerable versions: >= * < 5.5

ticket-manager fixed vulnerable versions: >= * <= *

WP Portfolio Gallery fixed vulnerable versions: >= * < 1.2.0

WP Video Lightbox fixed vulnerable versions: >= * < 1.7.5

wp-business-directory fixed vulnerable versions: >= * <= *

WPPizza – A Restaurant Plugin fixed vulnerable versions: >= * < 2.11.8.18

Alpine Photo Tile for Instagram open vulnerable versions: >= * < 1.2.7.5

Apizee Contact – Live Chat Plugin open vulnerable versions: >= * < 1.1

Contact Bank – Contact Form Builder for WordPress open vulnerable versions: >= * < 2.0.227

embedplus-for-wordpress open vulnerable versions: >= * < 5.4

Gallery Bank – WordPress Photo Gallery Plugin open vulnerable versions: >= * < 3.0.229

Images Lazyload and Slideshow open vulnerable versions: >= * < 3.3

mklasens-photobox open vulnerable versions: >= * <= *

MyBlogU open vulnerable versions: >= * < 0.0.8

Onclick show popup open vulnerable versions: >= * < 6.6

TreXanh Property open vulnerable versions: >= * <= 0.1

webrotate-360-product-viewer open vulnerable versions: >= * < 2.5.2

WP Easy Gallery – WordPress Gallery Plugin open vulnerable versions: >= * < 4.1.1

wp-instagram-bank open vulnerable versions: >= * <= *

Open source

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Incorrect?

Is this information incorrect? Please leave us a message.

Latest

Protecting site visitors with Security Headers

Hardening your website’s security

Login protection as essential security

Why WordPress is (in)secure

Staying ahead of vulnerabilities

Password has been found in a data breach

Input validation vulnerability in Jquery plugin PrettyPhoto.js (34 plugins affected)

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles