CVE-2017-20248
Deferred Deferred - Pending Action
Path Traversal in Apptha Slider Gallery

Publication date: 2026-06-09

Last updated on: 2026-06-09

Assigner: VulnCheck

Description
Apptha Slider Gallery 1.0 contains a path traversal vulnerability that allows unauthenticated attackers to download arbitrary files by manipulating the imgname parameter. Attackers can send requests to asgallDownload.php with directory traversal sequences ../ to access sensitive files outside the intended directory.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2026-06-09
Last Modified
2026-06-09
Generated
2026-06-09
AI Q&A
2026-06-09
EPSS Evaluated
N/A
NVD
CVE-2017-20248
EUVD
EUVD-2017-18974
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
apptha slider_gallery to 1.0 (inc)
apptha slider_gallery 1.0
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-22 The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

The Apptha Slider Gallery version 1.0 contains a path traversal vulnerability that allows unauthenticated attackers to download arbitrary files from the server.

This happens because the plugin's 'asgallDownload.php' file accepts an 'imgname' parameter that can be manipulated with directory traversal sequences like '../'.

By exploiting this, attackers can access sensitive files outside the intended directory, such as configuration or core WordPress files.

Impact Analysis

This vulnerability can have serious security impacts because it allows attackers to download arbitrary files from your server without any authentication.

Attackers could access sensitive files, including configuration files, which may contain database credentials or other secrets.

Such unauthorized access can lead to further exploitation, data breaches, or compromise of the entire WordPress installation.

Detection Guidance

This vulnerability can be detected by monitoring HTTP requests to the vulnerable plugin's file asgallDownload.php for attempts to manipulate the 'imgname' parameter with directory traversal sequences such as '../'.

A practical detection method is to search web server logs for requests containing 'asgallDownload.php' with suspicious 'imgname' parameters that include '../' sequences.

  • Use grep or similar tools to find such requests in access logs, for example:
  • grep "asgallDownload.php" /var/log/apache2/access.log | grep "imgname=.."
  • Alternatively, use network monitoring tools or IDS/IPS systems to detect HTTP requests with directory traversal patterns targeting asgallDownload.php.
Mitigation Strategies

Immediate mitigation steps include disabling or removing the vulnerable Apptha Slider Gallery plugin version 1.0 from your WordPress installation.

If disabling the plugin is not immediately possible, restrict access to the asgallDownload.php file by implementing web server rules to block requests containing directory traversal sequences in the 'imgname' parameter.

Additionally, monitor your logs for suspicious activity and consider applying any available patches or updates from the plugin vendor.

Compliance Impact

The vulnerability allows unauthenticated attackers to download arbitrary files, including potentially sensitive files, from the server by exploiting a path traversal flaw. This unauthorized access to sensitive data could lead to violations of data protection regulations such as GDPR or HIPAA, which require safeguarding personal and sensitive information against unauthorized access.

Because the exploit enables remote, unauthenticated access to files outside the intended directory, organizations using the affected plugin may face compliance risks if sensitive or regulated data is exposed.

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2017-20248. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart