Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.8
CVSSv2

CVE-2010-5040

Published: 02/11/2011 Updated: 16/11/2011
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
VMScore: 685
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Subscribe to Np Gallery Plugin

Vulnerability Summary

PHP remote file inclusion vulnerability in nucleus/plugins/NP_gallery.php in the NP_Gallery plugin 0.94 for Nucleus allows remote malicious users to execute arbitrary PHP code via a URL in the DIR_NUCLEUS parameter. NOTE: some of these details are obtained from third party information.

Vulnerable Product Search on Vulmon Subscribe to Product

john_bradshaw np_gallery_plugin 0.94

Exploits

Exploit DB: Nucleus Plugin Gallery - Remote File Inclusion / SQL Injection
============================================================================================================= [o] Nucleus Plugin Gallery RFI & SQLi Vulnerability Software : NP_Gallery version 094 Download : wakkaxiffynl/_media/np_gallery_0941zip?id=gallery&cache=cache Author : AntiSecurity [ NoGe Vrs- ...

References

CWE-94http://www.exploit-db.com/exploits/12787/http://www.osvdb.org/65004http://secunia.com/advisories/40022http://www.vupen.com/english/advisories/2010/1285http://www.securityfocus.com/bid/40448https://nvd.nist.govhttps://www.exploit-db.com/exploits/12787/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925CVE-2023-41826LFICVE-2022-22364CVE-2024-2887command injectionremote code executionCVE-2024-34446CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook