8.8
CVE-2020-35942
- EPSS 1.38%
- Veröffentlicht 09.02.2021 18:15:44
- Zuletzt bearbeitet 21.11.2024 05:28:33
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginWordPress Gallery Plugin – NextGEN Gallery <= 3.4.7 - Cross-Site Request Forgery
A Cross-Site Request Forgery (CSRF) issue in the NextGEN Gallery plugin before 3.5.0 for WordPress allows File Upload and Local File Inclusion via settings modification, leading to Remote Code Execution and XSS. (It is possible to bypass CSRF protection by simply not including a nonce parameter.)
Mögliche Gegenmaßnahme
Photo Gallery, Sliders, Proofing and Themes – NextGEN Gallery: Update to version 3.5.0, or a newer patched version
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Imagely ≫ Nextgen Gallery SwPlatformwordpress Version < 3.5.0
Weitere Schwachstelleninformationen
SystemWordPress Plugin
≫
Produkt
Photo Gallery, Sliders, Proofing and Themes – NextGEN Gallery
Version
*-3.4.7
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.38% | 0.685 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 8.8 | 2.8 | 5.9 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
CWE-352 Cross-Site Request Forgery (CSRF)
The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.
CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
https://www.wordfence.com/blog/2021/02/severe-vulnerabilities-patched-in-nextgen-gallery-affect-over-800000-wordpress-sites/
https://www.wordfence.com/threat-intel/vulnerabilities/id/1fa45912-3d26-4284-8957-5977aaf36a03