PT-2023-30788 · Imagely · Imagely Wordpress Gallery Plugin - Nextgen Gallery
Fearzzzz
+2
·
Published
2023-11-30
·
Updated
2023-12-06
·
CVE-2023-48328
CVSS v3.1
8.8
High
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Imagely WordPress Gallery Plugin – NextGEN Gallery versions through 3.37
Description
A Cross-Site Request Forgery (CSRF) issue allows unauthorized actions to be performed on behalf of a user. This can lead to various security problems, including unauthorized data modification or access. The issue affects the Imagely WordPress Gallery Plugin – NextGEN Gallery, allowing Cross Site Request Forgery.
Recommendations
For versions through 3.37, update to a version later than 3.37 to resolve the issue.
At the moment, there is no information about other specific mitigation measures for this issue.
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Imagely Wordpress Gallery Plugin - Nextgen Gallery