PT-2023-13608 · Imagely · Imagely Wordpress Gallery Plugin - Nextgen Gallery
István Márton
+1
·
Published
2023-03-01
·
Updated
2023-03-08
·
CVE-2022-38468
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Imagely WordPress Gallery Plugin - NextGEN Gallery versions prior to 3.29
Description
The issue is related to a Cross-Site Request Forgery (CSRF) vulnerability, which can lead to thumbnail alteration.
Recommendations
For versions prior to 3.29, update to version 3.29 or later to resolve the issue.
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Imagely Wordpress Gallery Plugin - Nextgen Gallery