CVE-2023-6947

Name of the Vulnerable Software and Affected Versions FooGallery plugin for WordPress versions up to, and including, 2.4.26

Description The FooGallery plugin for WordPress has a Directory Traversal issue. This allows authenticated attackers with contributor level or higher to read the contents of arbitrary folders on the server, potentially accessing sensitive information such as folder structure.

Recommendations For versions up to, and including, 2.4.26, update to a version higher than 2.4.26 to resolve the issue. As a temporary workaround, consider restricting access to sensitive folders on the server until a patch is available.