Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bharat mediratta gallery vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv2
CVE-2007-4650
Multiple unspecified vulnerabilities in Gallery prior to 2.2.3 allow malicious users to (1) rename items, (2) read and modify item properties, or (3) lock and replace items via unknown vectors in (a) the WebDAV module; and (4) edit unspecified data files using "linked items&...
Bharat Mediratta Gallery
5
CVSSv2
CVE-2001-0900
Directory traversal vulnerability in modules.php in Gallery prior to 1.2.3 allows remote malicious users to read arbitrary files via a .. (dot dot) in the include parameter.
Francisco Burzi Gallery
1 EDB exploit
7.5
CVSSv2
CVE-2002-1412
Gallery photo album package prior to 1.3.1 allows local and possibly remote malicious users to execute arbitrary code via a modified GALLERY_BASEDIR variable that points to a directory or URL that contains a Trojan horse init.php script.
Gallery Project Gallery
1 EDB exploit
7.5
CVSSv2
CVE-2001-1234
Bharat Mediratta Gallery PHP script prior to 1.2.1 allows remote malicious users to execute arbitrary code by including files from remote web sites via an HTTP request that modifies the includedir variable.
Gallery Project Gallery 1.2
Gallery Project Gallery 1.1
Gallery Project Gallery 1.2.1
5
CVSSv2
CVE-2004-2124
The register_globals simulation capability in Gallery 1.3.1 up to and including 1.4.1 allows remote malicious users to modify the HTTP_POST_VARS variable and conduct a PHP remote file inclusion attack via the GALLERY_BASEDIR parameter, a different vulnerability than CVE-2002-1412...
Gallery Project Gallery 1.4.1
Gallery Project Gallery 1.3.1
Gallery Project Gallery 1.3.2
Gallery Project Gallery 1.3.3
Gallery Project Gallery 1.4
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started