Detections
Analytics
GRAND Flash Album Gallery Plugin for WordPress 'f' Parameter Traversal Arbitrary Directory Enumeration
medium Nessus Plugin ID 64259
Language:
Synopsis
The remote web server contains a PHP script that is affected by a directory traversal vulnerability.Description
The Grand Flash Album Gallery Plugin for WordPress installed on the remote host is affected by a directory traversal vulnerability due to a failure to properly sanitize user-supplied input to the 'f' parameter of its 'facebook.php' script. This vulnerability allows an unauthenticated, remote attacker to enumerate arbitrary directories on the remote host using a request containing directory traversal sequences.The application is also reportedly affected by several information disclosure, SQL injection, and arbitrary file-overwrite vulnerabilities; however, Nessus has not tested for these issues.
Solution
Upgrade to version 2.10 or later.See Also
http://www.waraxe.us/advisory-94.html
https://wordpress.org/plugins/flash-album-gallery/#changelog
Plugin Details
Severity: Medium
ID: 64259
File Name: wordpress_grand_flagallery_info_disclosure.nasl
Version: 1.10
Type: remote
Family: CGI abuses
Published: 1/28/2013
Updated: 1/19/2021
Supported Sensors: Nessus
Risk Information
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 4.8
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N
Vulnerability Information
CPE: cpe:/a:wordpress:wordpress
Required KB Items: installed_sw/WordPress, www/PHP
Exploit Available: true
Exploit Ease: Exploits are available
Exploited by Nessus: true
Patch Publication Date: 10/29/2012
Vulnerability Publication Date: 10/24/2012
Reference Information
BID: 56236