PT-2018-4961 · Wordpress Foundation+1 · Wordpress+1

Mukhammad Khalilov

Published

2018-07-13

Updated

2019-10-09

CVE-2016-6565

CVSS v3.1

7.5

High

Vector

AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Imagely NextGen Gallery plugin for Wordpress versions prior to 2.1.57

Description The issue arises from improper validation of user input in the cssfile parameter of an HTTP POST request. This may allow an authenticated user to read arbitrary files from the server or execute arbitrary code on the server, depending on the server configuration.

Recommendations For versions prior to 2.1.57, update to version 2.1.57 or later to resolve the issue. As a temporary workaround, consider restricting access to the cssfile parameter in the HTTP POST request to minimize the risk of exploitation.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-98CWE-20

Related Identifiers

CVE-2016-6565

Affected Products

Nextgen Gallery

Wordpress

PT-2018-4961 · Wordpress Foundation+1 · Wordpress+1

CVE-2016-6565

Weakness Enumeration

Related Identifiers

Affected Products

References · 4