Bug: JMK's Picture Gallery admin login ( Ascii Version )

Search:
WLB2

JMK's Picture Gallery admin login

Published
Credit
Risk
2006.05.02
AlpEren,tugr@
Medium
CWE
CVE
Local
Remote
N/A
CVE-2006-2118
No
Yes

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.5/10
6.4/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial

dork: "JMK's Picture Gallery"

and last path to add : admin_gallery.php3?action=add&upload=1

example:hhtp://www.site.com/path/.../admin_gallery.php3?action=add&uploa
d=1

credits:AlpEren,tugr@

See this note in TXT Version

Bugtraq RSS
Bugtraq
 
REDDIT
REDDIT
 
DIGG
DIGG
 
LinkedIn
LinkedIn
 
CVE RSS
CVEMAP

Copyright 2014, cxsecurity.com
Ascii Version