CVE-2023-6947

The Best WordPress Gallery Plugin – FooGallery plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.4.26. This makes it possible for authenticated attackers, with contributor level or higher to read the contents of arbitrary folders on the server, which can contain sensitive information such as folder structure.

CVSS v3 7.7 HIGH

7.7^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.1 / Impact : 4.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope CHANGED

References

Link	Resource
https://github.com/fooplugins/foogallery/pull/263/commits/9989f6f4f4d478ec04cb634d09b18c87a5b31c4d	Patch
https://www.wordfence.com/threat-intel/vulnerabilities/id/68420c5a-4add-4597-bd2a-20dc831e81bd?source=cve	Third Party Advisory

Configurations

Configuration 1 (hide)

cpe:2.3:a:fooplugins:foogallery:*:*:*:*:premium:wordpress:*:*

History

No history.

Information

Published : 2024-12-10 06:15

Updated : 2025-02-24 18:22

NVD link : CVE-2023-6947

Mitre link : CVE-2023-6947

CVE.ORG link : CVE-2023-6947

JSON object : View

Products Affected

fooplugins

foogallery

CWE

CWE-25

Path Traversal: '/../filedir'

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

{"id": "CVE-2023-6947", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.7, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 4.0, "exploitabilityScore": 3.1}]}, "published": "2024-12-10T06:15:19.950", "references": [{"url": "https://github.com/fooplugins/foogallery/pull/263/commits/9989f6f4f4d478ec04cb634d09b18c87a5b31c4d", "tags": ["Patch"], "source": "[email protected]"}, {"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/68420c5a-4add-4597-bd2a-20dc831e81bd?source=cve", "tags": ["Third Party Advisory"], "source": "[email protected]"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-25"}]}, {"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "The Best WordPress Gallery Plugin \u2013 FooGallery plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.4.26. This makes it possible for authenticated attackers, with contributor level or higher to read the contents of arbitrary folders on the server, which can contain sensitive information such as folder structure."}, {"lang": "es", "value": "El complemento Best WordPress Gallery Plugin \u2013 FooGallery para WordPress, es vulnerable a Directory Traversal en todas las versiones hasta la 2.4.26 incluida. Esto permite que atacantes autenticados, con nivel de colaborador o superior, lean el contenido de carpetas arbitrarias en el servidor, que pueden contener informaci\u00f3n confidencial como la estructura de carpetas."}], "lastModified": "2025-02-24T18:22:30.857", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:fooplugins:foogallery:*:*:*:*:premium:wordpress:*:*", "vulnerable": true, "matchCriteriaId": "2E48D4DF-08E5-49F1-886A-9649A1CD6455", "versionEndExcluding": "2.4.27"}], "operator": "OR"}]}], "sourceIdentifier": "[email protected]"}