Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
menalto gallery vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2012-2405
Gallery 2 prior to 2.3.2 and 3 prior to 3.0.3 does not properly implement encryption, which has unspecified impact and attack vectors, a different vulnerability than CVE-2012-1113.
Maian Gallery 2.3
Maian Gallery 2.3.1
Menalto Gallery 2.2.6
Maian Gallery 3.0.1
Maian Gallery 3.0.2
Maian Gallery 3.0
10
CVSSv2
CVE-2007-6686
The URL rewrite module in Menalto Gallery prior to 2.2.4 allows malicious users to include and execute arbitrary local files via unknown vectors related to the admin controller.
Menalto Gallery
10
CVSSv2
CVE-2007-6690
The Gallery Remote module in Menalto Gallery prior to 2.2.4 does not check permissions for unspecified GR commands, which has unknown impact and attack vectors.
Menalto Gallery
10
CVSSv2
CVE-2007-6693
Unspecified vulnerability in the WebCam module in Menalto Gallery prior to 2.2.4 has unknown impact and attack vectors related to a "proxied request."
Menalto Gallery Webcam Module
10
CVSSv2
CVE-2007-6685
Unspecified vulnerability in the Publish XP module Menalto Gallery prior to 2.2.4 allows malicious users to create albums and upload files via unknown vectors.
Menalto Gallery Publish Xp Module
10
CVSSv2
CVE-2007-6688
Unspecified vulnerability in the Installation application in Menalto Gallery prior to 2.2.4 has unknown impact and attack vectors related to "web-accessibility protection of the storage folder."
Menalto Gallery
10
CVSSv2
CVE-2007-6691
Multiple unspecified vulnerabilities in Menalto Gallery prior to 2.2.4 have unknown impact, related to (1) "hotlink protection" in the URL rewrite module, (2) a WebDAV view in the WebDAV module, (3) a comment view in the Comment module, (4) unspecified "item inform...
Menalto Gallery
7.5
CVSSv2
CVE-2013-2138
The (1) uploadify and (2) flowplayer SWF files in Gallery 3 prior to 3.0.8 do not properly remove query parameters and fragments, which allows remote malicious users to have an unspecified impact via a replay attack.
Menalto Gallery 3.0.2
Menalto Gallery 3.0.3
Menalto Gallery 3.0.4
Menalto Gallery 3.0.5
Menalto Gallery 3.0
Menalto Gallery 3.0.1
Menalto Gallery 3.0.6
Menalto Gallery
7.5
CVSSv2
CVE-2013-2240
lib/flowplayer.swf.php in Gallery 3 prior to 3.0.9 does not properly remove query fragments, which allows remote malicious users to have an unspecified impact via a replay attack, a different vulnerability than CVE-2013-2138.
Menalto Gallery 3.0.5
Menalto Gallery 3.0.6
Menalto Gallery 3.0.7
Menalto Gallery 3.0.8
Menalto Gallery 3.0
Menalto Gallery 3.0.1
Menalto Gallery 3.0.2
Menalto Gallery 3.0.3
Menalto Gallery 3.0.4
7.5
CVSSv2
CVE-2012-4343
Multiple unspecified vulnerabilities in Gallery 3 prior to 3.0.4 allow malicious users to execute arbitrary PHP code via unknown vectors.
Menalto Gallery 3.0.2
Menalto Gallery 3.0
Menalto Gallery 3.0.1
Menalto Gallery
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »