Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gallery gallery 1.5.1 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2008-5296
Gallery 1.5.x prior to 1.5.10 and 1.6 prior to 1.6-RC3, when register_globals is enabled, allows remote malicious users to bypass authentication and gain administrative via unspecified cookies. NOTE: some of these details are obtained from third party information.
Gallery Gallery
Gallery Gallery 1.4.1
Gallery Gallery 1.4.4
Gallery Gallery 1.3.2
Gallery Gallery 1.3.3
Gallery Gallery 1.5.2
Gallery Gallery 1.5.7
Gallery Gallery 1.2.1
Gallery Gallery 1.3.1
Gallery Gallery 1.5.1
Gallery Gallery 1.3.4
Gallery Gallery 1.4
5
CVSSv2
CVE-2006-4030
Unspecified vulnerability in the stats module in Gallery 1.5.1-RC2 and previous versions allows remote malicious users to obtain sensitive information via unspecified attack vectors, related to "two file exposure bugs."
Gallery Project Gallery 1.4.3 Pl1
Gallery Project Gallery 1.4.3 Pl2
Gallery Project Gallery 1.5
Gallery Project Gallery 1.5.1
Gallery Project Gallery 1.4
Gallery Project Gallery 1.4.4 Pl4
Gallery Project Gallery 1.4.4 Pl5
Gallery Project Gallery 1.4.1
Gallery Project Gallery 1.4.2
Gallery Project Gallery 1.4 Pl1
Gallery Project Gallery 1.4 Pl2
Gallery Project Gallery 1.4.4 Pl2
Gallery Project Gallery 1.4.4 Pl3
Gallery Project Gallery 1.5 Pl1
Gallery Project Gallery
4.3
CVSSv2
CVE-2005-2734
Cross-site scripting (XSS) vulnerability in Gallery 1.5.1-RC2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via EXIF data, such as the Camera Model Tag.
Gallery Project Gallery 1.4
Gallery Project Gallery 1.4.1
Gallery Project Gallery 1.4.4 Pl5
Gallery Project Gallery 1.4 Pl1
Gallery Project Gallery 1.4.2
Gallery Project Gallery 1.4.3 Pl1
Gallery Project Gallery 1.4 Pl2
Gallery Project Gallery 1.5
Gallery Project Gallery 1.4.3 Pl2
Gallery Project Gallery 1.4.4 Pl2
Gallery Project Gallery 1.5.1
Gallery Project Gallery 1.5.1 Rc2
Gallery Project Gallery 1.4.4 Pl3
Gallery Project Gallery 1.4.4 Pl4
4.3
CVSSv2
CVE-2006-0330
Cross-site scripting (XSS) vulnerability in Gallery prior to 1.5.2 allows remote malicious users to inject arbitrary web script or HTML via unknown attack vectors, possibly involving the user name (fullname).
Gallery Project Gallery 1.3.4
Gallery Project Gallery 1.4.4 Pl4
Gallery Project Gallery 1.4.4 Pl5
Gallery Project Gallery 1.4.3 Pl2
Gallery Project Gallery 1.4.4 Pl2
Gallery Project Gallery 1.4.4 Pl3
Gallery Project Gallery 1.5.1 Rc2
Gallery Project Gallery 1.5.2 Rc2
Gallery Project Gallery 1.4.2
Gallery Project Gallery 1.4.3 Pl1
Gallery Project Gallery 1.5
Gallery Project Gallery 1.5.1
Gallery Project Gallery 1.4
Gallery Project Gallery 1.4.1
Gallery Project Gallery 1.4 Pl1
Gallery Project Gallery 1.4 Pl2
6.5
CVSSv2
CVE-2006-0587
Unspecified vulnerability in util.php in Gallery prior to 1.5.2-pl2 allows remote authenticated users with trick an owner into modifying stored album data and possibly executing arbitrary code via unspecified vectors involving a crafted link to a crafted file.
Gallery Project Gallery 1.4.3 Pl2
Gallery Project Gallery 1.4.4 Pl2
Gallery Project Gallery 1.4 Pl1
Gallery Project Gallery 1.4.2
Gallery Project Gallery 1.5.1
Gallery Project Gallery 1.5
Gallery Project Gallery 1.4.4 Pl3
Gallery Project Gallery 1.4.1
Gallery Project Gallery 1.5.1 Rc2
Gallery Project Gallery 1.4.3 Pl1
Gallery Project Gallery 1.4.4 Pl4
Gallery Project Gallery 1.5.2 Rc2
Gallery Project Gallery 1.4.4 Pl5
Gallery Project Gallery 1.3.4
Gallery Project Gallery 1.4 Pl2
Gallery Project Gallery 1.4
4.3
CVSSv2
CVE-2006-1696
Cross-site scripting (XSS) vulnerability in Gallery prior to 1.5.3 allows remote malicious users to inject arbitrary web script or HTML via unknown attack vectors.
Gallery Project Gallery 1.3.4
Gallery Project Gallery 1.4.4 Pl3
Gallery Project Gallery 1.4.4 Pl4
Gallery Project Gallery 1.5.2
Gallery Project Gallery 1.5.2 Pl1
Gallery Project Gallery 1.4
Gallery Project Gallery 1.4.1
Gallery Project Gallery 1.4.4 Pl5
Gallery Project Gallery 1.4 Pl1
Gallery Project Gallery 1.5.2 Pl2
Gallery Project Gallery 1.5.2 Rc2
Gallery Project Gallery 1.5.2 Rc3
Gallery Project Gallery 1.4.2
Gallery Project Gallery 1.4.3 Pl1
Gallery Project Gallery 1.4 Pl2
Gallery Project Gallery 1.5
Gallery Project Gallery 1.4.3 Pl2
Gallery Project Gallery 1.4.4 Pl2
Gallery Project Gallery 1.5.1
Gallery Project Gallery 1.5.1 Rc2
6.5
CVSSv2
CVE-2014-2558
The File Gallery plugin prior to 1.7.9.2 for WordPress does not properly escape strings, which allows remote administrators to execute arbitrary PHP code via a \' (backslash quote) in the setting fields to /wp-admin/options-media.php, related to the create_function function.
Skyphe File-gallery 1.7.2
Skyphe File-gallery 1.7.1
Skyphe File-gallery 1.7
Skyphe File-gallery 1.6.5.5
Skyphe File-gallery 1.6.6
Skyphe File-gallery 1.6.5.4
Skyphe File-gallery 1.6.5.3
Skyphe File-gallery 1.5.7
Skyphe File-gallery 1.5.6
Skyphe File-gallery 1.5.5
Skyphe File-gallery 1.5.4
Skyphe File-gallery 1.7.5.3
Skyphe File-gallery 1.7.5.1
Skyphe File-gallery 1.7.5
Skyphe File-gallery 1.6.3
Skyphe File-gallery 1.6.2
Skyphe File-gallery 1.6.0.1
Skyphe File-gallery 1.6
Skyphe File-gallery 1.5
Skyphe File-gallery
Skyphe File-gallery 1.7.7
Skyphe File-gallery 1.7.4.1
5
CVSSv2
CVE-2012-1614
Coppermine Photo Gallery prior to 1.5.20 allows remote malicious users to obtain sensitive information via (1) a direct request to plugins/visiblehookpoints/index.php, an invalid (2) page or (3) cat parameter to thumbnails.php, an invalid (4) page parameter to usermgr.php, or an ...
Coppermine-gallery Coppermine Photo Gallery 1.4.17
Coppermine-gallery Coppermine Photo Gallery 1.5.8
Coppermine-gallery Coppermine Photo Gallery 1.4.11
Coppermine-gallery Coppermine Photo Gallery 1.4.19
Coppermine-gallery Coppermine Photo Gallery 1.4.14
Coppermine-gallery Coppermine Photo Gallery 1.2.0
Coppermine-gallery Coppermine Photo Gallery 1.4.8
Coppermine-gallery Coppermine Photo Gallery 1.2.1
Coppermine-gallery Coppermine Photo Gallery 1.4.23
Coppermine-gallery Coppermine Photo Gallery 1.4.22
Coppermine-gallery Coppermine Photo Gallery 1.4.7
Coppermine-gallery Coppermine Photo Gallery 1.4.0
Coppermine-gallery Coppermine Photo Gallery 1.5.4
Coppermine-gallery Coppermine Photo Gallery 1.4.2
Coppermine-gallery Coppermine Photo Gallery 1.4.26
Coppermine-gallery Coppermine Photo Gallery 1.4.16
Coppermine-gallery Coppermine Photo Gallery 1.5.10
Coppermine-gallery Coppermine Photo Gallery 1.4.3
Coppermine-gallery Coppermine Photo Gallery 1.2
Coppermine-gallery Coppermine Photo Gallery 1.5.14
Coppermine-gallery Coppermine Photo Gallery 1.5.6
Coppermine-gallery Coppermine Photo Gallery 1.5.16
1 EDB exploit
3.5
CVSSv2
CVE-2012-1613
Cross-site scripting (XSS) vulnerability in edit_one_pic.php in Coppermine Photo Gallery prior to 1.5.20 allows remote authenticated users with certain privileges to inject arbitrary web script or HTML via the keywords parameter.
Coppermine-gallery Coppermine Photo Gallery 1.4.17
Coppermine-gallery Coppermine Photo Gallery 1.5.8
Coppermine-gallery Coppermine Photo Gallery 1.4.11
Coppermine-gallery Coppermine Photo Gallery 1.4.19
Coppermine-gallery Coppermine Photo Gallery 1.4.14
Coppermine-gallery Coppermine Photo Gallery 1.2.0
Coppermine-gallery Coppermine Photo Gallery 1.4.8
Coppermine-gallery Coppermine Photo Gallery 1.2.1
Coppermine-gallery Coppermine Photo Gallery 1.4.23
Coppermine-gallery Coppermine Photo Gallery 1.4.22
Coppermine-gallery Coppermine Photo Gallery 1.4.7
Coppermine-gallery Coppermine Photo Gallery 1.4.0
Coppermine-gallery Coppermine Photo Gallery 1.5.4
Coppermine-gallery Coppermine Photo Gallery 1.4.2
Coppermine-gallery Coppermine Photo Gallery 1.4.26
Coppermine-gallery Coppermine Photo Gallery 1.4.16
Coppermine-gallery Coppermine Photo Gallery 1.5.10
Coppermine-gallery Coppermine Photo Gallery 1.4.3
Coppermine-gallery Coppermine Photo Gallery 1.2
Coppermine-gallery Coppermine Photo Gallery 1.5.14
Coppermine-gallery Coppermine Photo Gallery 1.5.6
Coppermine-gallery Coppermine Photo Gallery 1.5.16
1 EDB exploit
4.3
CVSSv2
CVE-2010-4693
Multiple cross-site scripting (XSS) vulnerabilities in Coppermine Photo Gallery 1.5.10 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) h and (2) t parameters to help.php, or (3) picfile_XXX parameter to searchnew.php.
Coppermine-gallery Coppermine Photo Gallery 1.2.0
Coppermine-gallery Coppermine Photo Gallery 1.2
Coppermine-gallery Coppermine Photo Gallery 1.3.0
Coppermine-gallery Coppermine Photo Gallery 1.4.1
Coppermine-gallery Coppermine Photo Gallery 1.4.5
Coppermine-gallery Coppermine Photo Gallery 1.4.4
Coppermine-gallery Coppermine Photo Gallery 1.4.7
Coppermine-gallery Coppermine Photo Gallery 1.4.12
Coppermine-gallery Coppermine Photo Gallery 1.2.1
Coppermine-gallery Coppermine Photo Gallery 1.0
Coppermine-gallery Coppermine Photo Gallery 1.4.3
Coppermine-gallery Coppermine Photo Gallery 1.4.2
Coppermine-gallery Coppermine Photo Gallery 1.4.10
Coppermine-gallery Coppermine Photo Gallery 1.4.13
Coppermine-gallery Coppermine Photo Gallery 1.3.5
Coppermine-gallery Coppermine Photo Gallery 1.4
Coppermine-gallery Coppermine Photo Gallery 1.4.19
Coppermine-gallery Coppermine Photo Gallery 1.4.20
Coppermine-gallery Coppermine Photo Gallery 1.5.1
Coppermine-gallery Coppermine Photo Gallery 1.5.2
Coppermine-gallery Coppermine Photo Gallery 1.4.15
Coppermine-gallery Coppermine Photo Gallery 1.4.21
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »