CVE-2025-13621
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-12-05

Last updated on: 2025-12-08

Assigner: Wordfence

Description
The dream gallery plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or incorrect nonce validation on the 'dreampluginsmain' AJAX action. This makes it possible for unauthenticated attackers to update the plugin's settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-12-05
Last Modified
2025-12-08
Generated
2026-05-07
AI Q&A
2025-12-05
EPSS Evaluated
2026-05-05
NVD
CVE-2025-13621
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
pankaj_bachhal dream_gallery 1.0
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-352 The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability is a Cross-Site Request Forgery (CSRF) issue in the dream gallery plugin for WordPress, affecting all versions up to and including 1.0. It occurs because the plugin lacks proper nonce validation on the 'dreampluginsmain' AJAX action. This allows unauthenticated attackers to trick a site administrator into performing actions, such as updating plugin settings or injecting malicious web scripts, by sending forged requests.


How can this vulnerability impact me? :

The vulnerability can allow attackers to modify the plugin's settings and inject malicious scripts without authentication, potentially compromising the website's integrity and security. This could lead to unauthorized changes, site defacement, or the execution of malicious code in the context of the administrator's browser.


What immediate steps should I take to mitigate this vulnerability?

To mitigate this vulnerability, immediately update the dream gallery plugin to a version later than 1.0 where the nonce validation issue is fixed. Additionally, avoid clicking on suspicious links and ensure that only trusted administrators have access to plugin settings to reduce the risk of CSRF attacks.


How can this vulnerability be detected on my network or system? Can you suggest some commands?

To detect this vulnerability, monitor for unauthorized or suspicious AJAX requests to the 'dreampluginsmain' action on your WordPress site, especially POST requests that attempt to update plugin settings without proper nonce validation. You can use network traffic analysis tools like tcpdump or Wireshark to capture HTTP requests, or inspect web server logs for unusual POST requests targeting the AJAX endpoint. For example, using curl to test the AJAX endpoint for missing nonce validation: curl -X POST -d 'action=dreampluginsmain&[other parameters]' https://yourwordpresssite.com/wp-admin/admin-ajax.php. Additionally, you can search your WordPress installation for the presence of the Dream Gallery plugin version 1.0 or earlier, which is vulnerable. Since the plugin lacks nonce verification on AJAX handlers, any POST request to these endpoints without a valid nonce could indicate exploitation attempts. [1]


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart