The NextGEN Gallery plugin for WordPress, which is used to create galleries on websites, has a security flaw that could allow unauthorized users to access sensitive information. This vulnerability affects all versions up to and including 3.59. Attackers who are not logged in could potentially view private data, such as EXIF and other metadata, from any images uploaded using the plugin.