Photo Gallery by Ays WordPress Plugin Cross-Site Request Forgery Vulnerability

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the Photo Gallery by Ays plugin for WordPress, affecting all versions through 6.4.8. The vulnerability arises from inadequate nonce verification in the 'process_bulk_action()' function, allowing unauthenticated attackers to manipulate bulk actions—such as deleting, publishing, or unpublishing galleries—by deceiving an administrator into clicking a link.

Impact

Exploitation of this vulnerability could lead to unauthorized bulk actions being performed on galleries, such as deletion or status changes, potentially disrupting the site's content management.

Reproduction

To reproduce this vulnerability, an attacker must craft a request that exploits the lack of nonce verification in the 'process_bulk_action()' function. This can be done by tricking an administrator into clicking a link that carries the forged request, thereby bypassing the intended security measures.

Remediation

Users are advised to update the Photo Gallery by Ays plugin to version 6.4.9 or later, where this vulnerability has been patched.