Vulnerability Description
The image_id parameter of the AJAX call to the editimage_bwg action of admin-ajax.php is vulnerable to reflected Cross Site Scripting. The value of the image_id parameter is embedded within an existing JavaScript within the response allowing arbitrary JavaScript to be inserted and executed. The attacker must target a an authenticated user with permissions to access this component to exploit this issue.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| 10Web | Photo Gallery | < 1.8.22 |
Related Weaknesses (CWE)
References
- https://appcheck-ng.com/xss-vulnerabilities-discovered-10web-photogallery-wordprExploitThird Party Advisory
- https://wordpress.org/plugins/photo-gallery/#developersProduct
- https://appcheck-ng.com/xss-vulnerabilities-discovered-10web-photogallery-wordprExploitThird Party Advisory
- https://wordpress.org/plugins/photo-gallery/#developersProduct
FAQ
What is CVE-2024-29808?
CVE-2024-29808 is a vulnerability with a CVSS score of 5.4 (MEDIUM). The image_id parameter of the AJAX call to the editimage_bwg action of admin-ajax.php is vulnerable to reflected Cross Site Scripting. The value of the image_id parameter is embedded within an existin...
How severe is CVE-2024-29808?
CVE-2024-29808 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-29808?
Check the references section above for vendor advisories and patch information. Affected products include: 10Web Photo Gallery.