ThreatPress

WordPress Vulnerabilities Database

Back

WordPress NextGEN Gallery plugin <= 3.1.6 - Authenticated Option Update vulnerability (Fremius Library security issue)

Product
NextGEN Gallery
Description
Authenticated Option Update vulnerability (Fremius Library security issue) found in WordPress NextGEN Gallery plugin (versions <= 3.1.6).
Solution
Update the WordPress NextGEN Gallery plugin to the latest available version (at least 3.1.7).
Classification
Type BYPASS
OWASP Top 10 A2: Broken Authentication and Session Management
References
Security issue description
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In <= 3.1.6
Fixed In 3.1.7
Disclosure date
2019-03-02
Submitter
ThreatPress