CVE-2024-29832
Last modified
CVE-2024-29832 is a medium-severity vulnerability rated 6.1/10 on the CVSS scale. The current_url parameter of the AJAX call to the GalleryBox action of admin-ajax.php is vulnerable to reflected Cross Site Scripting. The value of the current_url parameter is embedded within an existing JavaScript within the response allowing arbitrary JavaScript to be inserted and executed. EPSS estimates a 0.45% chance of exploitation in the next 30 days.
Description
The current_url parameter of the AJAX call to the GalleryBox action of admin-ajax.php is vulnerable to reflected Cross Site Scripting. The value of the current_url parameter is embedded within an existing JavaScript within the response allowing arbitrary JavaScript to be inserted and executed. No authentication is required to exploit this issue. Note that other parameters within a AJAX call, such as image_id, must be valid for this vulnerability to be successfully exploited.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| 10web | Photo Gallery | < 1.8.22 |
References
- https://appcheck-ng.com/xss-vulnerabilities-discovered-10web-photogallery-wordpress-plugin/Exploit, Third Party Advisory
- https://appcheck-ng.com/xss-vulnerabilities-discovered-10web-photogallery-wordpress-plugin/Exploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Analyzed
Frequently Asked Questions
What is CVE-2024-29832?
How severe is CVE-2024-29832?
How do I fix CVE-2024-29832?
Are you affected by CVE-2024-29832?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST