Published: 27/02/2009 Updated: 29/09/2017

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 690

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Directory traversal vulnerability in _conf/_php-core/common-tpl-vars.php in PHPmyGallery 1.5 beta allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the conf[lang] parameter, a different issue than CVE-2008-6318. NOTE: this might be the same issue as CVE-2008-6316.

Vulnerable Product	Search on Vulmon	Subscribe to Product
phpmygallery phpmygallery 1.5

[~] PHPmyGallery v~10beta2 RFi/LFi Multiple Remote Vuln [~] [~] download: phpmygallerykapierichnet/en/downloads/?dir=PHP/&getfile=PK_phpmygallery-10beta2zip [~] [~] ---------------------------------------------------------- [~] Discovered By: ZoRLu msn: trt-turk@hotmailcom [~] [~] Home: wwwz0rlublogspotcom [~] [~] Date: 08/12 ...

***************************************************************************************** Phpmygallery-15beta (common-tpl-varsphp) Multiple Local File Inclusion Vulnerabilities ***************************************************************************************** Script Name: Phpmygallery Version: 15beta Autor: CoBRa_21 My Site: www ...

CWE-22 http://www.securityfocus.com/bid/32723 https://exchange.xforce.ibmcloud.com/vulnerabilities/47171 https://www.exploit-db.com/exploits/7399 https://nvd.nist.gov https://www.exploit-db.com/exploits/7392/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-6317

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect