Reflected Cross Site Scripting Vulnerability in admin-ajax.php's Current_url Parameter
CVE-2024-29832

6.1MEDIUM

Key Information:

Vendor: WordPress
Status: Photogallery
Vendor: CVE Published:; 26 March 2024

What is CVE-2024-29832?

The current_url parameter of the AJAX call to the GalleryBox action of admin-ajax.php is vulnerable to reflected Cross Site Scripting. The value of the current_url parameter is embedded within an existing JavaScript within the response allowing arbitrary JavaScript to be inserted and executed. No authentication is required to exploit this issue. Note that other parameters within a AJAX call, such as image_id, must be valid for this vulnerability to be successfully exploited.

Affected Version(s)

PhotoGallery 1.0.1 <= 1.8.21

References

https://appcheck-ng.com/xss-vulnerabilities-discovered-10...

https://wordpress.org/plugins/photo-gallery/#developers

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 26, 2024
Vulnerability Reserved
Mar 20, 2024

Credit

AppCheck Ltd.