TinyWebGallery 1.8.3 allows remote malicious users to execute arbitrary code via shell metacharacters in the command parameter to (1) inc/filefunctions.inc or (2) info.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tinywebgallery tinywebgallery 1.8.3 |