Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
menalto gallery 2.2.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-2722
Menalto Gallery prior to 2.2.5 allows remote malicious users to bypass permissions for sub-albums via a ZIP archive.
Menalto Gallery 2.2.1
Menalto Gallery 2.2.3
Menalto Gallery 2.1.1
Menalto Gallery 2.1.2
Menalto Gallery 2.1
Menalto Gallery 2.2.0
Menalto Gallery
Menalto Gallery 2.2.2
NA
CVE-2008-2720
Cross-site scripting (XSS) vulnerability in Menalto Gallery prior to 2.2.5 allows remote malicious users to inject arbitrary web script or HTML via the (1) host and (2) path components of a URL.
Menalto Gallery 2.2.1
Menalto Gallery 2.2.3
Menalto Gallery 2.1.1
Menalto Gallery 2.1.2
Menalto Gallery 2.1
Menalto Gallery 2.2.0
Menalto Gallery
Menalto Gallery 2.2.2
NA
CVE-2008-2721
Unspecified vulnerability in the album-select module in Menalto Gallery prior to 2.2.5 allows remote malicious users to obtain titles of hidden albums by attempting to add a new album to a hidden album.
Menalto Gallery 2.2.1
Menalto Gallery 2.2.3
Menalto Gallery 2.1.1
Menalto Gallery 2.1.2
Menalto Gallery 2.1
Menalto Gallery 2.2.0
Menalto Gallery
Menalto Gallery 2.2.2
NA
CVE-2008-2723
embed.php in Menalto Gallery prior to 2.2.5 allows remote malicious users to obtain the full path via unknown vectors related to "spoofing the remote address."
Menalto Gallery 2.2.1
Menalto Gallery 2.2.3
Menalto Gallery 2.1.1
Menalto Gallery 2.1.2
Menalto Gallery 2.1
Menalto Gallery 2.2.0
Menalto Gallery
Menalto Gallery 2.2.2
NA
CVE-2008-2724
Menalto Gallery prior to 2.2.5 does not enforce permissions for non-album items that have been protected by a password, which might allow remote malicious users to bypass intended access restrictions.
Menalto Gallery 2.2.1
Menalto Gallery 2.2.3
Menalto Gallery 2.2.4
Menalto Gallery 2.1.1
Menalto Gallery 2.1.2
Menalto Gallery 2.1
Menalto Gallery 2.2.0
Menalto Gallery 2.2.2
NA
CVE-2010-4353
Unrestricted file upload vulnerability in modules/gallery/models/item.php in Menalto Gallery prior to 3.0 and beta allows remote authenticated users with upload permissions to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct ...
Menalto Gallery 2.2.1
Menalto Gallery 1.6
Menalto Gallery 2.2.3
Menalto Gallery
Menalto Gallery 1.5.7
Menalto Gallery 2.2.4
Menalto Gallery 2.1.1
Menalto Gallery 2.1.2
Menalto Gallery 2.1
Menalto Gallery 2.2.0
Menalto Gallery 2.2.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started