WordPress Mac Photo Gallery Security Bypass

Posted: September 12, 2012 in Vulnerabilities
Tags: ,

Wordpress VulnerabilityVulnerability: Security Bypass WordPress Mac Photo Gallery

Danger: Medium
Impact: Security Bypass
Affected products: WordPress Mac Photo Gallery Plugin 2.x

Affected versions: WordPress Mac Photo Gallery 2.10, possibly other versions.

Which can be exploited by malicious people to bypass certain security restrictions.

An error in the authentication and authorization checks in the scenarios and wp-content/plugins/mac-dock-gallery/macalbajax.php wp-content/plugins/mac-dock-gallery/macphtajax.php. A remote user can get access to restricted functionality (for example, image editing and album names).

Manufacturer URL: http://wordpress.org/extend/plugins/mac-dock-gallery/

Solution: The way to eliminate the vulnerability does not exist at present.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s