CVE-2015-1394
Description
Multiple cross-site scripting (XSS) vulnerabilities in the Photo Gallery plugin before 1.2.11 for WordPress allow remote authenticated users to inject arbitrary web script or HTML via the (1) sort_by, (2) sort_order, (3) items_view, (4) dir, (5) clipboard_task, (6) clipboard_files, (7) clipboard_src, or (8) clipboard_dest parameters in an addImages action to wp-admin/admin-ajax.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Authenticated XSS in Photo Gallery plugin before 1.2.11 for WordPress via multiple parameters in addImages action.
Vulnerability
The Photo Gallery plugin for WordPress versions before 1.2.11 contains multiple cross-site scripting (XSS) vulnerabilities in the addImages action of wp-admin/admin-ajax.php. The sort_by, sort_order, items_view, dir, clipboard_task, clipboard_files, clipboard_src, and clipboard_dest parameters are not properly sanitized before output, allowing injection of arbitrary web script or HTML. The vulnerability is present in all versions prior to 1.2.11 [1].
Exploitation
An attacker must be an authenticated WordPress user with access to the admin area. The attacker can craft a malicious request to wp-admin/admin-ajax.php with the action=addImages parameter and inject script code into any of the listed parameters. No additional privileges or user interaction beyond authentication is required.
Impact
Successful exploitation allows the attacker to execute arbitrary JavaScript in the context of the victim's browser session. This can lead to session hijacking, defacement, or theft of sensitive information such as cookies or admin credentials. The attack is limited to the scope of the authenticated user's permissions.
Mitigation
The vulnerability is fixed in version 1.2.11 of the Photo Gallery plugin. Users should update to the latest version (1.8.41 as of the reference) to ensure protection [1]. No workarounds are documented; updating is the recommended mitigation.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- WordPress/Photo Gallery plugindescription
Patches
2r1076678r1073334Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- www.securityfocus.com/archive/1/archive/1/534568/100/0/threadedmitrex_refsource_MISC
- plugins.trac.wordpress.org/changeset/1073334/mitrex_refsource_MISC
- plugins.trac.wordpress.org/changeset/1076678/photo-gallerymitrex_refsource_MISC
- seclists.org/bugtraq/2015/Jan/140mitrex_refsource_MISC
- wordpress.org/plugins/photo-gallery/changelog/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.