What the vulnerability does
01Description
The Modula Image Gallery plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'ajax_unzip_file' function in versions 2.13.1 to 2.13.2. This makes it possible for authenticated attackers, with Author-level access and above, to upload arbitrary files with race condition on the affected site's server which may make remote code execution possible.
Explanation of Vulnerability in Simple Terms
02Summary
Image Gallery – Photo Grid & Video Gallery versions 2.13.1 and 2.13.2 contain an unrestricted file upload vulnerability. An authenticated user with low privileges can upload files without proper validation, potentially allowing them to upload malicious files to the site. This could lead to unauthorized access, data theft, or site compromise depending on where uploaded files are stored and executed.
What an attacker can do
03Attacker Capabilities
Upload files without validation to the site, potentially including malicious code or scripts.
Potential impact on your site
04Site Impact
Attackers with user accounts can upload malicious files that may compromise your site's security, data, or availability.
Conditions required to exploit
05Prerequisites
Attacker must have a low-privilege user account on the site and network access to the plugin.
Key dates
06Disclosure timeline
December 3, 2025
CVE published
December 3, 2025
Record updated