CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-35942

A Cross-Site Request Forgery (CSRF) issue in the NextGEN Gallery plugin before 3.5.0 for WordPress allows File Upload and Local File Inclusion via settings modification, leading to Remote Code Execution and XSS. (It is possible to bypass CSRF protection by simply not including a nonce parameter.)

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 53.6%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

Products affected by CVE-2020-35942

Imagely » Nextgen Gallery » Version: N/A

cpe:2.3:a:imagely:nextgen_gallery:-
Imagely » Nextgen Gallery » Version: 1.5.0

cpe:2.3:a:imagely:nextgen_gallery:1.5.0
Imagely » Nextgen Gallery » Version: 1.5.1

cpe:2.3:a:imagely:nextgen_gallery:1.5.1
Imagely » Nextgen Gallery » Version: 1.5.2

cpe:2.3:a:imagely:nextgen_gallery:1.5.2
Imagely » Nextgen Gallery » Version: 1.5.3

cpe:2.3:a:imagely:nextgen_gallery:1.5.3
Imagely » Nextgen Gallery » Version: 1.5.4

cpe:2.3:a:imagely:nextgen_gallery:1.5.4
Imagely » Nextgen Gallery » Version: 1.5.5

cpe:2.3:a:imagely:nextgen_gallery:1.5.5
Imagely » Nextgen Gallery » Version: 1.6.0

cpe:2.3:a:imagely:nextgen_gallery:1.6.0
Imagely » Nextgen Gallery » Version: 1.6.1

cpe:2.3:a:imagely:nextgen_gallery:1.6.1
Imagely » Nextgen Gallery » Version: 1.6.2

cpe:2.3:a:imagely:nextgen_gallery:1.6.2
Imagely » Nextgen Gallery » Version: 1.7.0

cpe:2.3:a:imagely:nextgen_gallery:1.7.0
Imagely » Nextgen Gallery » Version: 1.7.1

cpe:2.3:a:imagely:nextgen_gallery:1.7.1
Imagely » Nextgen Gallery » Version: 1.7.2

cpe:2.3:a:imagely:nextgen_gallery:1.7.2
Imagely » Nextgen Gallery » Version: 1.7.3

cpe:2.3:a:imagely:nextgen_gallery:1.7.3
Imagely » Nextgen Gallery » Version: 1.7.4

cpe:2.3:a:imagely:nextgen_gallery:1.7.4
Imagely » Nextgen Gallery » Version: 1.8.0

cpe:2.3:a:imagely:nextgen_gallery:1.8.0
Imagely » Nextgen Gallery » Version: 1.8.1

cpe:2.3:a:imagely:nextgen_gallery:1.8.1
Imagely » Nextgen Gallery » Version: 1.8.2

cpe:2.3:a:imagely:nextgen_gallery:1.8.2
Imagely » Nextgen Gallery » Version: 1.8.3

cpe:2.3:a:imagely:nextgen_gallery:1.8.3
Imagely » Nextgen Gallery » Version: 1.8.4

cpe:2.3:a:imagely:nextgen_gallery:1.8.4
Imagely » Nextgen Gallery » Version: 1.9.0

cpe:2.3:a:imagely:nextgen_gallery:1.9.0
Imagely » Nextgen Gallery » Version: 1.9.1

cpe:2.3:a:imagely:nextgen_gallery:1.9.1
Imagely » Nextgen Gallery » Version: 1.9.10

cpe:2.3:a:imagely:nextgen_gallery:1.9.10
Imagely » Nextgen Gallery » Version: 1.9.11

cpe:2.3:a:imagely:nextgen_gallery:1.9.11
Imagely » Nextgen Gallery » Version: 1.9.12

cpe:2.3:a:imagely:nextgen_gallery:1.9.12
Imagely » Nextgen Gallery » Version: 1.9.13

cpe:2.3:a:imagely:nextgen_gallery:1.9.13
Imagely » Nextgen Gallery » Version: 1.9.2

cpe:2.3:a:imagely:nextgen_gallery:1.9.2
Imagely » Nextgen Gallery » Version: 1.9.3

cpe:2.3:a:imagely:nextgen_gallery:1.9.3
Imagely » Nextgen Gallery » Version: 1.9.5

cpe:2.3:a:imagely:nextgen_gallery:1.9.5
Imagely » Nextgen Gallery » Version: 1.9.6

cpe:2.3:a:imagely:nextgen_gallery:1.9.6
Imagely » Nextgen Gallery » Version: 1.9.7

cpe:2.3:a:imagely:nextgen_gallery:1.9.7
Imagely » Nextgen Gallery » Version: 1.9.8

cpe:2.3:a:imagely:nextgen_gallery:1.9.8
Imagely » Nextgen Gallery » Version: 2.0

cpe:2.3:a:imagely:nextgen_gallery:2.0
Imagely » Nextgen Gallery » Version: 2.0.11

cpe:2.3:a:imagely:nextgen_gallery:2.0.11
Imagely » Nextgen Gallery » Version: 2.0.14

cpe:2.3:a:imagely:nextgen_gallery:2.0.14
Imagely » Nextgen Gallery » Version: 2.0.17

cpe:2.3:a:imagely:nextgen_gallery:2.0.17
Imagely » Nextgen Gallery » Version: 2.0.21

cpe:2.3:a:imagely:nextgen_gallery:2.0.21
Imagely » Nextgen Gallery » Version: 2.0.23

cpe:2.3:a:imagely:nextgen_gallery:2.0.23
Imagely » Nextgen Gallery » Version: 2.0.25

cpe:2.3:a:imagely:nextgen_gallery:2.0.25
Imagely » Nextgen Gallery » Version: 2.0.27

cpe:2.3:a:imagely:nextgen_gallery:2.0.27
Imagely » Nextgen Gallery » Version: 2.0.30

cpe:2.3:a:imagely:nextgen_gallery:2.0.30
Imagely » Nextgen Gallery » Version: 2.0.31

cpe:2.3:a:imagely:nextgen_gallery:2.0.31
Imagely » Nextgen Gallery » Version: 2.0.33

cpe:2.3:a:imagely:nextgen_gallery:2.0.33
Imagely » Nextgen Gallery » Version: 2.0.40

cpe:2.3:a:imagely:nextgen_gallery:2.0.40
Imagely » Nextgen Gallery » Version: 2.0.57

cpe:2.3:a:imagely:nextgen_gallery:2.0.57
Imagely » Nextgen Gallery » Version: 2.0.58

cpe:2.3:a:imagely:nextgen_gallery:2.0.58
Imagely » Nextgen Gallery » Version: 2.0.59

cpe:2.3:a:imagely:nextgen_gallery:2.0.59
Imagely » Nextgen Gallery » Version: 2.0.61

cpe:2.3:a:imagely:nextgen_gallery:2.0.61
Imagely » Nextgen Gallery » Version: 2.0.63

cpe:2.3:a:imagely:nextgen_gallery:2.0.63
Imagely » Nextgen Gallery » Version: 2.0.65

cpe:2.3:a:imagely:nextgen_gallery:2.0.65
Imagely » Nextgen Gallery » Version: 2.0.66

cpe:2.3:a:imagely:nextgen_gallery:2.0.66
Imagely » Nextgen Gallery » Version: 2.0.66.16

cpe:2.3:a:imagely:nextgen_gallery:2.0.66.16
Imagely » Nextgen Gallery » Version: 2.0.66.17

cpe:2.3:a:imagely:nextgen_gallery:2.0.66.17
Imagely » Nextgen Gallery » Version: 2.0.66.26

cpe:2.3:a:imagely:nextgen_gallery:2.0.66.26
Imagely » Nextgen Gallery » Version: 2.0.66.27

cpe:2.3:a:imagely:nextgen_gallery:2.0.66.27
Imagely » Nextgen Gallery » Version: 2.0.66.29

cpe:2.3:a:imagely:nextgen_gallery:2.0.66.29
Imagely » Nextgen Gallery » Version: 2.0.66.31

cpe:2.3:a:imagely:nextgen_gallery:2.0.66.31
Imagely » Nextgen Gallery » Version: 2.0.66.33

cpe:2.3:a:imagely:nextgen_gallery:2.0.66.33
Imagely » Nextgen Gallery » Version: 2.0.7

cpe:2.3:a:imagely:nextgen_gallery:2.0.7
Imagely » Nextgen Gallery » Version: 2.0.71

cpe:2.3:a:imagely:nextgen_gallery:2.0.71
Imagely » Nextgen Gallery » Version: 2.0.74

cpe:2.3:a:imagely:nextgen_gallery:2.0.74
Imagely » Nextgen Gallery » Version: 2.0.76

cpe:2.3:a:imagely:nextgen_gallery:2.0.76
Imagely » Nextgen Gallery » Version: 2.0.77

cpe:2.3:a:imagely:nextgen_gallery:2.0.77
Imagely » Nextgen Gallery » Version: 2.0.77.3

cpe:2.3:a:imagely:nextgen_gallery:2.0.77.3
Imagely » Nextgen Gallery » Version: 2.0.78

cpe:2.3:a:imagely:nextgen_gallery:2.0.78
Imagely » Nextgen Gallery » Version: 2.0.78.1

cpe:2.3:a:imagely:nextgen_gallery:2.0.78.1
Imagely » Nextgen Gallery » Version: 2.0.79

cpe:2.3:a:imagely:nextgen_gallery:2.0.79
Imagely » Nextgen Gallery » Version: 2.1.0

cpe:2.3:a:imagely:nextgen_gallery:2.1.0
Imagely » Nextgen Gallery » Version: 2.1.10

cpe:2.3:a:imagely:nextgen_gallery:2.1.10
Imagely » Nextgen Gallery » Version: 2.1.13

cpe:2.3:a:imagely:nextgen_gallery:2.1.13
Imagely » Nextgen Gallery » Version: 2.1.15

cpe:2.3:a:imagely:nextgen_gallery:2.1.15
Imagely » Nextgen Gallery » Version: 2.1.18

cpe:2.3:a:imagely:nextgen_gallery:2.1.18
Imagely » Nextgen Gallery » Version: 2.1.19

cpe:2.3:a:imagely:nextgen_gallery:2.1.19
Imagely » Nextgen Gallery » Version: 2.1.2

cpe:2.3:a:imagely:nextgen_gallery:2.1.2
Imagely » Nextgen Gallery » Version: 2.1.23

cpe:2.3:a:imagely:nextgen_gallery:2.1.23
Imagely » Nextgen Gallery » Version: 2.1.26

cpe:2.3:a:imagely:nextgen_gallery:2.1.26
Imagely » Nextgen Gallery » Version: 2.1.27

cpe:2.3:a:imagely:nextgen_gallery:2.1.27
Imagely » Nextgen Gallery » Version: 2.1.31

cpe:2.3:a:imagely:nextgen_gallery:2.1.31
Imagely » Nextgen Gallery » Version: 2.1.33

cpe:2.3:a:imagely:nextgen_gallery:2.1.33
Imagely » Nextgen Gallery » Version: 2.1.43

cpe:2.3:a:imagely:nextgen_gallery:2.1.43
Imagely » Nextgen Gallery » Version: 2.1.44

cpe:2.3:a:imagely:nextgen_gallery:2.1.44
Imagely » Nextgen Gallery » Version: 2.1.45

cpe:2.3:a:imagely:nextgen_gallery:2.1.45
Imagely » Nextgen Gallery » Version: 2.1.46

cpe:2.3:a:imagely:nextgen_gallery:2.1.46
Imagely » Nextgen Gallery » Version: 2.1.49

cpe:2.3:a:imagely:nextgen_gallery:2.1.49
Imagely » Nextgen Gallery » Version: 2.1.50

cpe:2.3:a:imagely:nextgen_gallery:2.1.50
Imagely » Nextgen Gallery » Version: 2.1.54

cpe:2.3:a:imagely:nextgen_gallery:2.1.54
Imagely » Nextgen Gallery » Version: 2.1.56

cpe:2.3:a:imagely:nextgen_gallery:2.1.56
Imagely » Nextgen Gallery » Version: 2.1.57

cpe:2.3:a:imagely:nextgen_gallery:2.1.57
Imagely » Nextgen Gallery » Version: 2.1.59

cpe:2.3:a:imagely:nextgen_gallery:2.1.59
Imagely » Nextgen Gallery » Version: 2.1.60

cpe:2.3:a:imagely:nextgen_gallery:2.1.60
Imagely » Nextgen Gallery » Version: 2.1.61

cpe:2.3:a:imagely:nextgen_gallery:2.1.61
Imagely » Nextgen Gallery » Version: 2.1.62

cpe:2.3:a:imagely:nextgen_gallery:2.1.62
Imagely » Nextgen Gallery » Version: 2.1.69

cpe:2.3:a:imagely:nextgen_gallery:2.1.69
Imagely » Nextgen Gallery » Version: 2.1.7

cpe:2.3:a:imagely:nextgen_gallery:2.1.7
Imagely » Nextgen Gallery » Version: 2.1.77

cpe:2.3:a:imagely:nextgen_gallery:2.1.77
Imagely » Nextgen Gallery » Version: 2.1.79

cpe:2.3:a:imagely:nextgen_gallery:2.1.79
Imagely » Nextgen Gallery » Version: 2.1.9

cpe:2.3:a:imagely:nextgen_gallery:2.1.9
Imagely » Nextgen Gallery » Version: 2.2.1

cpe:2.3:a:imagely:nextgen_gallery:2.2.1
Imagely » Nextgen Gallery » Version: 2.2.10

cpe:2.3:a:imagely:nextgen_gallery:2.2.10
Imagely » Nextgen Gallery » Version: 2.2.12

cpe:2.3:a:imagely:nextgen_gallery:2.2.12
Imagely » Nextgen Gallery » Version: 2.2.14

cpe:2.3:a:imagely:nextgen_gallery:2.2.14
Imagely » Nextgen Gallery » Version: 2.2.16

cpe:2.3:a:imagely:nextgen_gallery:2.2.16
Imagely » Nextgen Gallery » Version: 2.2.17

cpe:2.3:a:imagely:nextgen_gallery:2.2.17
Imagely » Nextgen Gallery » Version: 2.2.18

cpe:2.3:a:imagely:nextgen_gallery:2.2.18
Imagely » Nextgen Gallery » Version: 2.2.2

cpe:2.3:a:imagely:nextgen_gallery:2.2.2
Imagely » Nextgen Gallery » Version: 2.2.3

cpe:2.3:a:imagely:nextgen_gallery:2.2.3
Imagely » Nextgen Gallery » Version: 2.2.30

cpe:2.3:a:imagely:nextgen_gallery:2.2.30
Imagely » Nextgen Gallery » Version: 2.2.33

cpe:2.3:a:imagely:nextgen_gallery:2.2.33
Imagely » Nextgen Gallery » Version: 2.2.43

cpe:2.3:a:imagely:nextgen_gallery:2.2.43
Imagely » Nextgen Gallery » Version: 2.2.45

cpe:2.3:a:imagely:nextgen_gallery:2.2.45
Imagely » Nextgen Gallery » Version: 2.2.46

cpe:2.3:a:imagely:nextgen_gallery:2.2.46
Imagely » Nextgen Gallery » Version: 2.2.50

cpe:2.3:a:imagely:nextgen_gallery:2.2.50
Imagely » Nextgen Gallery » Version: 2.2.54

cpe:2.3:a:imagely:nextgen_gallery:2.2.54
Imagely » Nextgen Gallery » Version: 2.2.8

cpe:2.3:a:imagely:nextgen_gallery:2.2.8
Imagely » Nextgen Gallery » Version: 2.2.9

cpe:2.3:a:imagely:nextgen_gallery:2.2.9
Imagely » Nextgen Gallery » Version: 3.0.0

cpe:2.3:a:imagely:nextgen_gallery:3.0.0
Imagely » Nextgen Gallery » Version: 3.0.1

cpe:2.3:a:imagely:nextgen_gallery:3.0.1
Imagely » Nextgen Gallery » Version: 3.0.13

cpe:2.3:a:imagely:nextgen_gallery:3.0.13
Imagely » Nextgen Gallery » Version: 3.0.15

cpe:2.3:a:imagely:nextgen_gallery:3.0.15
Imagely » Nextgen Gallery » Version: 3.0.16

cpe:2.3:a:imagely:nextgen_gallery:3.0.16
Imagely » Nextgen Gallery » Version: 3.0.6

cpe:2.3:a:imagely:nextgen_gallery:3.0.6
Imagely » Nextgen Gallery » Version: 3.0.8

cpe:2.3:a:imagely:nextgen_gallery:3.0.8
Imagely » Nextgen Gallery » Version: 3.0.9

cpe:2.3:a:imagely:nextgen_gallery:3.0.9
Imagely » Nextgen Gallery » Version: 3.1.0

cpe:2.3:a:imagely:nextgen_gallery:3.1.0
Imagely » Nextgen Gallery » Version: 3.1.1

cpe:2.3:a:imagely:nextgen_gallery:3.1.1
Imagely » Nextgen Gallery » Version: 3.1.11

cpe:2.3:a:imagely:nextgen_gallery:3.1.11
Imagely » Nextgen Gallery » Version: 3.1.14

cpe:2.3:a:imagely:nextgen_gallery:3.1.14
Imagely » Nextgen Gallery » Version: 3.1.17

cpe:2.3:a:imagely:nextgen_gallery:3.1.17
Imagely » Nextgen Gallery » Version: 3.1.2

cpe:2.3:a:imagely:nextgen_gallery:3.1.2
Imagely » Nextgen Gallery » Version: 3.1.3

cpe:2.3:a:imagely:nextgen_gallery:3.1.3
Imagely » Nextgen Gallery » Version: 3.1.5

cpe:2.3:a:imagely:nextgen_gallery:3.1.5
Imagely » Nextgen Gallery » Version: 3.1.6

cpe:2.3:a:imagely:nextgen_gallery:3.1.6
Imagely » Nextgen Gallery » Version: 3.1.7

cpe:2.3:a:imagely:nextgen_gallery:3.1.7
Imagely » Nextgen Gallery » Version: 3.2.0

cpe:2.3:a:imagely:nextgen_gallery:3.2.0
Imagely » Nextgen Gallery » Version: 3.2.1

cpe:2.3:a:imagely:nextgen_gallery:3.2.1
Imagely » Nextgen Gallery » Version: 3.2.10

cpe:2.3:a:imagely:nextgen_gallery:3.2.10
Imagely » Nextgen Gallery » Version: 3.2.11

cpe:2.3:a:imagely:nextgen_gallery:3.2.11
Imagely » Nextgen Gallery » Version: 3.2.15

cpe:2.3:a:imagely:nextgen_gallery:3.2.15
Imagely » Nextgen Gallery » Version: 3.2.18

cpe:2.3:a:imagely:nextgen_gallery:3.2.18
Imagely » Nextgen Gallery » Version: 3.2.19

cpe:2.3:a:imagely:nextgen_gallery:3.2.19
Imagely » Nextgen Gallery » Version: 3.2.2

cpe:2.3:a:imagely:nextgen_gallery:3.2.2
Imagely » Nextgen Gallery » Version: 3.2.21

cpe:2.3:a:imagely:nextgen_gallery:3.2.21
Imagely » Nextgen Gallery » Version: 3.2.23

cpe:2.3:a:imagely:nextgen_gallery:3.2.23
Imagely » Nextgen Gallery » Version: 3.2.4

cpe:2.3:a:imagely:nextgen_gallery:3.2.4
Imagely » Nextgen Gallery » Version: 3.2.8

cpe:2.3:a:imagely:nextgen_gallery:3.2.8
Imagely » Nextgen Gallery » Version: 3.3.0

cpe:2.3:a:imagely:nextgen_gallery:3.3.0
Imagely » Nextgen Gallery » Version: 3.3.10

cpe:2.3:a:imagely:nextgen_gallery:3.3.10
Imagely » Nextgen Gallery » Version: 3.3.11

cpe:2.3:a:imagely:nextgen_gallery:3.3.11
Imagely » Nextgen Gallery » Version: 3.3.17

cpe:2.3:a:imagely:nextgen_gallery:3.3.17
Imagely » Nextgen Gallery » Version: 3.3.17.1

cpe:2.3:a:imagely:nextgen_gallery:3.3.17.1
Imagely » Nextgen Gallery » Version: 3.3.2

cpe:2.3:a:imagely:nextgen_gallery:3.3.2
Imagely » Nextgen Gallery » Version: 3.3.20

cpe:2.3:a:imagely:nextgen_gallery:3.3.20
Imagely » Nextgen Gallery » Version: 3.3.5

cpe:2.3:a:imagely:nextgen_gallery:3.3.5
Imagely » Nextgen Gallery » Version: 3.3.6

cpe:2.3:a:imagely:nextgen_gallery:3.3.6
Imagely » Nextgen Gallery » Version: 3.4.7

cpe:2.3:a:imagely:nextgen_gallery:3.4.7

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-35942

Products

Pricing

Contact Us