Bharat Mediratta Gallery PHP script prior to 1.2.1 allows remote malicious users to execute arbitrary code by including files from remote web sites via an HTTP request that modifies the includedir variable.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gallery project gallery 1.2 |
||
gallery project gallery 1.1 |
||
gallery project gallery 1.2.1 |