Reflected Cross Site Scripting Vulnerability in admin-ajax.php
CVE-2024-29810

5.4MEDIUM

Key Information:

Vendor
WordPress
Status
Photogallery
Vendor
CVE Published:
26 March 2024

Summary

The thumb_url parameter of the AJAX call to the editimage_bwg action of admin-ajax.php is vulnerable to reflected Cross Site Scripting. The value of the thumb_url parameter is embedded within an existing JavaScript within the response allowing arbitrary JavaScript to be inserted and executed. The attacker must target a an authenticated user with permissions to access this component to exploit this issue.

Affected Version(s)

PhotoGallery 1.0.1 <= 1.8.21

References

https://appcheck-ng.com/xss-vulnerabilities-discovered-10...
https://wordpress.org/plugins/photo-gallery/#developers

CVSS V3.1

Score:
5.4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

AppCheck Ltd.
.