Vulnerability Description
The thumb_url parameter of the AJAX call to the editimage_bwg action of admin-ajax.php is vulnerable to reflected Cross Site Scripting. The value of the thumb_url parameter is embedded within an existing JavaScript within the response allowing arbitrary JavaScript to be inserted and executed. The attacker must target a an authenticated user with permissions to access this component to exploit this issue.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| 10Web | Photo Gallery | < 1.8.22 |
Related Weaknesses (CWE)
References
- https://appcheck-ng.com/xss-vulnerabilities-discovered-10web-photogallery-wordprExploitThird Party Advisory
- https://wordpress.org/plugins/photo-gallery/#developersProduct
- https://appcheck-ng.com/xss-vulnerabilities-discovered-10web-photogallery-wordprExploitThird Party Advisory
- https://wordpress.org/plugins/photo-gallery/#developersProduct
FAQ
What is CVE-2024-29810?
CVE-2024-29810 is a vulnerability with a CVSS score of 5.4 (MEDIUM). The thumb_url parameter of the AJAX call to the editimage_bwg action of admin-ajax.php is vulnerable to reflected Cross Site Scripting. The value of the thumb_url parameter is embedded within an exist...
How severe is CVE-2024-29810?
CVE-2024-29810 has been rated MEDIUM with a CVSS base score of 5.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-29810?
Check the references section above for vendor advisories and patch information. Affected products include: 10Web Photo Gallery.