Unauthorized Data Access Vulnerability in NextGEN Gallery Plugin for WordPress
CVE-2024-3097

5.3MEDIUM

Key Information:

Vendor: Wordpress
Status: WordPress Gallery Plugin – Nextgen Gallery
Vendor: CVE Published:; 9 April 2024

Summary

The NextGEN Gallery plugin for WordPress is susceptible to unauthorized access, allowing attackers to bypass security measures due to a missing capability check in the get_item function. This vulnerability enables unauthenticated users to extract sensitive image metadata, including EXIF data, from any images uploaded via the plugin. The issue affects versions up to and including 3.59, posing a significant risk to site owners who need to protect their media data. Immediate action is recommended for users of the affected versions.

Affected Version(s)

WordPress Gallery Plugin – NextGEN Gallery * <= 3.59

References

https://www.wordfence.com/threat-intel/vulnerabilities/id...

https://zpbrent.github.io/pocs/8-plugin-nextgen-gallery-I...

https://plugins.trac.wordpress.org/browser/nextgen-galler...

EPSS Score

6% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 9, 2024
Vulnerability Reserved
Mar 29, 2024

Credit

Peng Zhou