Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
8.8
CVSSv3
CVE-2014-9312
Published: 28/08/2017 Updated: 08/07/2019
CVSS v2 Base Score: 6.5 | Impact Score: 6.4 | Exploitability Score: 8
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 655
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Subscribe to 10web
Vulnerability Summary
Unrestricted File Upload vulnerability in Photo Gallery 1.2.5.
Vulnerability Trend
Vulnerable Product
Search on Vulmon
Subscribe to Product
10web photo gallery 1.2.5
Exploits
Exploit DB: WordPress Plugin Photo Gallery 1.2.5 - Unrestricted Arbitrary File Upload
# Exploit Title: Photo Gallery 125 Unrestricted File Upload # Date: 11-11-2014 # Software Link: wordpressorg/plugins/photo-gallery/ # Exploit Author: Kacper Szurek # Contact: twittercom/KacperSzurek # Website: securityszurekpl/ # CVE: CVE-2014-9312 # Category: webapps 1 Description Every registered user (even Subscr ...
Exploit DB: Photo Gallery 1.2.5 Shell Upload
Photo Gallery version 125 suffers from a remote shell upload vulnerability ...
References
CWE-434
http://www.securityfocus.com/bid/72620
http://packetstormsecurity.com/files/130384/WordPress-Photo-Gallery-1.2.5-Unrestricted-File-Upload.html
http://packetstormsecurity.com/files/130104/Photo-Gallery-1.2.5-Shell-Upload.html
https://nvd.nist.gov
https://www.exploit-db.com/exploits/35916/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started