Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gallery project gallery 1.2.5 vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2004-0522
Gallery 1.4.3 and previous versions allows remote malicious users to bypass authentication and obtain Gallery administrator privileges.
Gallery Project Gallery 1.4 Pl1
Gallery Project Gallery 1.4.2
Gallery Project Gallery 1.4.1
Gallery Project Gallery 1.4.3 Pl1
Gallery Project Gallery 1.4 Pl2
Gallery Project Gallery 1.4
Debian Debian Linux 3.0
755
VMScore
CVE-2002-1412
Gallery photo album package prior to 1.3.1 allows local and possibly remote malicious users to execute arbitrary code via a modified GALLERY_BASEDIR variable that points to a directory or URL that contains a Trojan horse init.php script.
Gallery Project Gallery
1 EDB exploit
605
VMScore
CVE-2004-1106
Cross-site scripting (XSS) vulnerability in Gallery 1.4.4-pl3 and previous versions allows remote malicious users to execute arbitrary web script or HTML via "specially formed URLs," possibly via the include parameter in index.php.
Gallery Project Gallery 1.4.3 Pl2
Gallery Project Gallery 1.4 Pl1
Gallery Project Gallery 1.4.2
Gallery Project Gallery 1.4.1
Gallery Project Gallery 1.4.3 Pl1
Gallery Project Gallery 1.4 Pl2
Gallery Project Gallery 1.4
Gentoo Linux
435
VMScore
CVE-2003-0614
Cross-site scripting (XSS) vulnerability in search.php of Gallery 1.1 up to and including 1.3.4 allows remote malicious users to insert arbitrary web script via the searchstring parameter.
Gallery Project Gallery 1.2.1 P1
Gallery Project Gallery 1.3.1
Gallery Project Gallery 1.2.5
Gallery Project Gallery 1.3.2
Gallery Project Gallery 1.2.2
Gallery Project Gallery 1.2.4
Gallery Project Gallery 1.1
Gallery Project Gallery 1.2.1
Gallery Project Gallery 1.3
Gallery Project Gallery 1.3.4
Gallery Project Gallery 1.2
Gallery Project Gallery 1.3.3
Gallery Project Gallery 1.2.3
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started