The plugin Gallery Bank was closed on the Plugin Directory on Monday. Earlier today a new version of the plugin was submitted with the changelog “FIX: FTP Exploit Fixed”, which sounds unusual since normally plugins wouldn’t have anything to do with FTP unless they are making request via FTP to another server. Looking at the changes made and the old version of the plugin, we found this involved an “Upload from FTP” feature, though part of it is only available in a premium version of the plugin. What is available in the free version looks to have been vulnerable in that Author level users and above could view the names of subdirectories of arbitrary directories on the website.

...

---

This post provides insights on a vulnerability in the WordPress plugin Gallery Bank not discovered by us, where the discoverer hadn't provided the details needed for us to confirm the vulnerability while we were adding it to the data set for our service, so the rest of its contents are limited to subscribers of our service.

If you were using our service, you would have already been warned about this vulnerability if your website is vulnerable due to it. You can try out our service for free and then see the rest of the details of the vulnerability.

For existing customers, please log in to your account to view the rest of the contents of the post.