Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gallery vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2012-4343
Multiple unspecified vulnerabilities in Gallery 3 prior to 3.0.4 allow malicious users to execute arbitrary PHP code via unknown vectors.
Menalto Gallery 3.0.2
Menalto Gallery 3.0
Menalto Gallery 3.0.1
Menalto Gallery
6.8
CVSSv2
CVE-2008-4484
main.php in Crux Gallery 1.32 and previous versions allows remote malicious users to gain administrative access by setting the name parameter to "users," as demonstrated via index.php.
Crux Software Gallery 1.31
Crux Software Gallery 1.30
Crux Software Gallery 1.2
Crux Software Gallery 1.1
Crux Software Gallery 1.0
Crux Software Gallery
Crux Software Gallery 1.32
1 EDB exploit
6.8
CVSSv2
CVE-2008-4483
Directory traversal vulnerability in index.php in Crux Gallery 1.32 and previous versions, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the theme parameter.
Crux Software Gallery 1.31
Crux Software Gallery 1.30
Crux Software Gallery 1.0
Crux Software Gallery 1.2
Crux Software Gallery 1.1
Crux Software Gallery
Crux Software Gallery 1.32
1 EDB exploit
6.5
CVSSv2
CVE-2008-1840
SQL injection vulnerability in upload.php in Coppermine Photo Gallery (CPG) 1.4.16 and previous versions allows remote authenticated users or user-assisted remote HTTP servers to execute arbitrary SQL commands via the Content-Type HTTP response header provided by the HTTP server ...
Coppermine Coppermine Photo Gallery 1.4.8
Coppermine Coppermine Photo Gallery 1.4.11
Coppermine Coppermine Photo Gallery 1.4.12
Coppermine Coppermine Photo Gallery 1.4.13
Coppermine Coppermine Photo Gallery 1.4
Coppermine Coppermine Photo Gallery 1.4.7
Coppermine Coppermine Photo Gallery 1.4.2
Coppermine Coppermine Photo Gallery 1.4.5
Coppermine Coppermine Photo Gallery 1.4.6
Coppermine Coppermine Photo Gallery 1.4.9
Coppermine Coppermine Photo Gallery 1.4.3
Coppermine Coppermine Photo Gallery 1.4.4
Coppermine Coppermine Photo Gallery 1.4.14
Coppermine Coppermine Photo Gallery 1.4.10
Coppermine Coppermine Photo Gallery 1.4.1
Coppermine Coppermine Photo Gallery
5
CVSSv2
CVE-2005-3979
relocate_server.php in Coppermine Photo Gallery (CPG) 1.4.2 and 1.4 beta is not removed after installation and does not use authentication, which allows remote malicious users to obtain sensitive information, such as database configuration, via a direct request.
Coppermine-gallery Coppermine Photo Gallery 1.4
Coppermine-gallery Coppermine Photo Gallery 1.4.2
6.5
CVSSv2
CVE-2007-0122
Multiple SQL injection vulnerabilities in Coppermine Photo Gallery 1.4.10 and previous versions allow remote authenticated administrators to execute arbitrary SQL commands via (1) the cat parameter to albmgr.php, and possibly (2) the gid parameter to usermgr.php; (3) the start pa...
Coppermine Coppermine Photo Gallery 1.1 Beta 2
Coppermine Coppermine Photo Gallery 1.0
Coppermine Coppermine Photo Gallery 1.2.2 B-nuke
Coppermine Coppermine Photo Gallery 1.3
Coppermine Coppermine Photo Gallery 1.2.1
Coppermine Coppermine Photo Gallery 1.2.2 B
Coppermine Coppermine Photo Gallery 1.4.9
Coppermine Coppermine Photo Gallery
Coppermine Coppermine Photo Gallery 1.2
Coppermine Coppermine Photo Gallery 1.3.4
Coppermine Coppermine Photo Gallery 1.4.4
Coppermine Coppermine Photo Gallery 1.0 Rc3
Coppermine Coppermine Photo Gallery 1.1
Coppermine Coppermine Photo Gallery 1.3.2
Coppermine Coppermine Photo Gallery 1.3.3
1 EDB exploit
7.5
CVSSv2
CVE-2006-2514
Coppermine galleries prior to 1.4.6, when running on Apache with mod_mime installed, allows remote malicious users to upload arbitrary files via a filename with multiple file extensions.
Coppermine Coppermine Photo Gallery 1.1.0
Coppermine Coppermine Photo Gallery 1.1 Beta 2
Coppermine Coppermine Photo Gallery 1.4.2
Coppermine Coppermine Photo Gallery 1.4.3
Coppermine Coppermine Photo Gallery 1.2
Coppermine Coppermine Photo Gallery 1.2.1
Coppermine Coppermine Photo Gallery 1.4.4
Coppermine Coppermine Photo Gallery 1.4 Beta
Coppermine Coppermine Photo Gallery 1.0 Rc3
Coppermine Coppermine Photo Gallery 1.3.2
Coppermine Coppermine Photo Gallery 1.3.3
Coppermine Coppermine Photo Gallery 1.2.2 B
Coppermine Coppermine Photo Gallery 1.3
Coppermine Coppermine Photo Gallery
9.3
CVSSv2
CVE-2007-1600
PHP remote file inclusion vulnerability in module.php in Digital Eye Gallery 1.1 Beta (aka 0.1.1b) allows remote malicious users to execute arbitrary PHP code via a URL in the menu parameter.
Digital Eye Gallery Digital Eye Gallery 1.1 Beta
Digital Eye Gallery Digital Eye Gallery 0.1.1b
1 EDB exploit
5.1
CVSSv2
CVE-2013-5962
Unrestricted file upload vulnerability in frames/upload-images.php in the Complete Gallery Manager plugin prior to 3.3.4 rev40279 for WordPress allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct...
Envato Complete Gallery Manager Plugin 3.3.2
Envato Complete Gallery Manager Plugin 3.3.1
Envato Complete Gallery Manager Plugin 3.2.2
Envato Complete Gallery Manager Plugin 3.2.1
Envato Complete Gallery Manager Plugin 2.0.2
Envato Complete Gallery Manager Plugin 2.0.1
Envato Complete Gallery Manager Plugin 3.2.6
Envato Complete Gallery Manager Plugin 3.2.5
Envato Complete Gallery Manager Plugin 3.1.0
Envato Complete Gallery Manager Plugin 3.0.1
Envato Complete Gallery Manager Plugin 1.0.1
Envato Complete Gallery Manager Plugin 1.0.0
Envato Complete Gallery Manager Plugin 3.3.0
Envato Complete Gallery Manager Plugin 3.2.8
Envato Complete Gallery Manager Plugin 3.2.7
Envato Complete Gallery Manager Plugin 3.2.0
Envato Complete Gallery Manager Plugin 3.1.1
Envato Complete Gallery Manager Plugin 2.0.0
Envato Complete Gallery Manager Plugin 1.0.2
Envato Complete Gallery Manager Plugin
Envato Complete Gallery Manager Plugin 3.2.4
Envato Complete Gallery Manager Plugin 3.2.3
1 EDB exploit
2.1
CVSSv2
CVE-2014-3123
Cross-site scripting (XSS) vulnerability in admin/manage-images.php in the NextCellent Gallery plugin prior to 1.19.18 for WordPress allows remote authenticated users with the NextGEN Upload images, NextGEN Manage gallery, or NextGEN Manage others gallery permission to inject arb...
Wpgetready Nextcellent Gallery 1.9.16
Wpgetready Nextcellent Gallery 1.9.14
Wpgetready Nextcellent Gallery
Wpgetready Nextcellent Gallery 1.9.15
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675
CVE-2024-3400
CVE-2024-23557
mass assignment
CVE-2023-1389
local file inclusion
CVE-2024-32596
file upload
CVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »