CVE-2024-0221 — Path Traversal in Photo Gallery

CWE-22 — Path Traversal4 documents4 sources

Severity

7.2HIGHNVD

CNA9.1

EPSS

1.2%

top 21.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

10web Photo Gallery 10web Photo Gallery BY 10web Mobile-friendly Image Gallery

Timeline

PublishedFeb 5

Latest updateApr 11

Description

The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.8.19 via the rename_item function. This makes it possible for authenticated attackers to rename arbitrary files on the server. This can lead to site takeovers if the wp-config.php file of a site can be renamed. By default this can be exploited by administrators only. In the premium version of the plugin, administrators can give gallery manag…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 1.2 | Impact: 5.9

Affected Packages2 packages

▶CVEListV510web/photo_gallery_by_10web_mobile-friendly_image_gallery1.8.19

▶NVD10web/photo_gallery< 1.8.20

Patches

Patch: plugins.trac.wordpress.org ↗Patch: www.wordfence.com ↗Patch: plugins.trac.wordpress.org ↗

🔴Vulnerability Details

VulDB

10Web Photo Gallery Plugin up to 1.8.19 on WordPress File Rename path traversal↗2026-04-11

▶

GHSA

GHSA-rpjv-hwjc-55jj: The Photo Gallery by 10Web – Mobile-Friendly Image Gallery plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and includ↗2024-02-06

▶

CVEList

Photo Gallery by 10Web - Mobile-Friendly Image Gallery <= 1.8.19 - Directory Traversal to Arbitrary File Rename↗2024-02-05

▶