CVE-2024-3899: 
WordPress vulnerability analysis and mitigation

The Gallery Plugin for WordPress (Envira Gallery) before version 1.8.15 contains a Cross-Site Scripting (XSS) vulnerability. The plugin fails to properly sanitize and escape some of its image settings, potentially allowing users with post-writing privileges (such as Authors) to perform Cross-Site Scripting attacks (NVD, WPScan).

The vulnerability is classified as a Cross-Site Scripting (CWE-79) issue with a CVSS v3.1 base score of 4.8 (Medium) and vector string CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N. The vulnerability exists in the image settings functionality where certain fields are not properly sanitized. Specifically, when editing an Image from a Gallery using the blue 'Modify Image' overlay button, the 'Title' field is vulnerable to XSS payloads (WPScan).

If exploited, this vulnerability could allow authenticated users with post-writing privileges to inject malicious JavaScript code that would execute in the browsers of users viewing the affected gallery pages. This could potentially lead to theft of sensitive information or manipulation of webpage content (NVD).

The vulnerability has been fixed in version 1.8.15 of the Envira Gallery plugin. Users are advised to update to this version or later to mitigate the risk (WPScan).