CVE-2020-35942

moderate-risk
Published 2021-02-09

A Cross-Site Request Forgery (CSRF) issue in the NextGEN Gallery plugin before 3.5.0 for WordPress allows File Upload and Local File Inclusion via settings modification, leading to Remote Code Execution and XSS. (It is possible to bypass CSRF protection by simply not including a nonce parameter.)

Do I need to act?

-
0.31% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.8/10 High
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Imagely

References (2)

Exploit https://www.wordfence.com/blog/2021/02/severe-vulnerabilities-patched-in-nextgen...
Exploit https://www.wordfence.com/blog/2021/02/severe-vulnerabilities-patched-in-nextgen...
36
/ 100
moderate-risk
Severity 30/34 · Critical
Exploitability 1/34 · Minimal
Exposure 5/34 · Minimal