Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
menalto gallery 2.2.4 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-4353
Unrestricted file upload vulnerability in modules/gallery/models/item.php in Menalto Gallery prior to 3.0 and beta allows remote authenticated users with upload permissions to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct ...
Menalto Gallery 2.2.1
Menalto Gallery 1.6
Menalto Gallery 2.2.3
Menalto Gallery
Menalto Gallery 1.5.7
Menalto Gallery 2.2.4
Menalto Gallery 2.1.1
Menalto Gallery 2.1.2
Menalto Gallery 2.1
Menalto Gallery 2.2.0
Menalto Gallery 2.2.2
NA
CVE-2008-2724
Menalto Gallery prior to 2.2.5 does not enforce permissions for non-album items that have been protected by a password, which might allow remote malicious users to bypass intended access restrictions.
Menalto Gallery 2.2.1
Menalto Gallery 2.2.3
Menalto Gallery 2.2.4
Menalto Gallery 2.1.1
Menalto Gallery 2.1.2
Menalto Gallery 2.1
Menalto Gallery 2.2.0
Menalto Gallery 2.2.2
NA
CVE-2007-6688
Unspecified vulnerability in the Installation application in Menalto Gallery prior to 2.2.4 has unknown impact and attack vectors related to "web-accessibility protection of the storage folder."
Menalto Gallery
NA
CVE-2007-6685
Unspecified vulnerability in the Publish XP module Menalto Gallery prior to 2.2.4 allows malicious users to create albums and upload files via unknown vectors.
Menalto Gallery Publish Xp Module
NA
CVE-2007-6686
The URL rewrite module in Menalto Gallery prior to 2.2.4 allows malicious users to include and execute arbitrary local files via unknown vectors related to the admin controller.
Menalto Gallery
NA
CVE-2007-6689
Menalto Gallery prior to 2.2.4 does not properly check for malicious file extensions during file uploads, which allows malicious users to execute arbitrary code via the (1) Core application or (2) MIME module.
Menalto Gallery
NA
CVE-2007-6687
Multiple cross-site scripting (XSS) vulnerabilities in Menalto Gallery prior to 2.2.4 allow remote malicious users to inject arbitrary web script or HTML via crafted filenames to the (1) Core or (2) add-item modules; or via (3) HTTP PROPPATCH in the WebDAV module.
Menalto Gallery
NA
CVE-2007-6690
The Gallery Remote module in Menalto Gallery prior to 2.2.4 does not check permissions for unspecified GR commands, which has unknown impact and attack vectors.
Menalto Gallery
NA
CVE-2007-6691
Multiple unspecified vulnerabilities in Menalto Gallery prior to 2.2.4 have unknown impact, related to (1) "hotlink protection" in the URL rewrite module, (2) a WebDAV view in the WebDAV module, (3) a comment view in the Comment module, (4) unspecified "item inform...
Menalto Gallery
NA
CVE-2007-6692
Open redirect vulnerability in Menalto Gallery prior to 2.2.4 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the (1) Core and (2) print modules.
Menalto Gallery
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-6280
CVE-2024-5346
CVE-2024-30078
CVE-2022-45803
CVE-2024-36886
SQL
CVE-2024-24553
IMAP
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »