WordPress Mac Photo Gallery Security Bypass

Posted: September 12, 2012 in Vulnerabilities
Tags: ,

Wordpress VulnerabilityVulnerability: Security Bypass WordPress Mac Photo Gallery

Danger: Medium
Impact: Security Bypass
Affected products: WordPress Mac Photo Gallery Plugin 2.x

Affected versions: WordPress Mac Photo Gallery 2.10, possibly other versions.
Description:

Which can be exploited by malicious people to bypass certain security restrictions.

An error in the authentication and authorization checks in the scenarios and wp-content/plugins/mac-dock-gallery/macalbajax.php wp-content/plugins/mac-dock-gallery/macphtajax.php. A remote user can get access to restricted functionality (for example, image editing and album names).

Manufacturer URL: http://wordpress.org/extend/plugins/mac-dock-gallery/

Solution: The way to eliminate the vulnerability does not exist at present.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s