Detections
Analytics
Mac Photo Gallery for WordPress 'albid' Parameter Traversal Arbitrary File Access
medium Nessus Plugin ID 62205
Language:
Synopsis
The remote web server contains a PHP script that is affected by a remote file disclosure vulnerability.Description
The Mac Photo Gallery for WordPress hosted on the remote web server is affected by a file disclosure vulnerability due to a failure to properly sanitize user-supplied input to the 'albid' parameter of the 'macdownload.php' script. This vulnerability allows an unauthenticated, remote attacker to read arbitrary files by forming a request containing directory traversal sequences.Solution
Upgrade to version 2.10 or later.See Also
http://www.nessus.org/u?068d2f46
https://plugins.trac.wordpress.org/changeset/561047/mac-dock-gallery
Plugin Details
Severity: Medium
ID: 62205
File Name: wordpress_mac_photo_gallery_file_disclosure.nasl
Version: 1.11
Type: remote
Family: CGI abuses
Published: 9/19/2012
Updated: 1/19/2021
Supported Sensors: Nessus
Risk Information
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 4.1
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N
Vulnerability Information
CPE: cpe:/a:wordpress:wordpress
Required KB Items: installed_sw/WordPress, www/PHP
Exploit Available: true
Exploit Ease: Exploits are available
Exploited by Nessus: true
Patch Publication Date: 6/20/2012
Vulnerability Publication Date: 6/21/2012
Exploitable With
Elliot (WordPress Mac Photo Gallery 2.8 File Disclosure)
Reference Information
BID: 54128