RSS   Vulnerabilities for 'Gallery'   RSS

2007-09-04
 
CVE-2007-4650

CWE-264
 

 
Multiple unspecified vulnerabilities in Gallery before 2.2.3 allow attackers to (1) rename items, (2) read and modify item properties, or (3) lock and replace items via unknown vectors in (a) the WebDAV module; and (4) edit unspecified data files using "linked items" in WebDAV and (b) Reupload modules.

 
2003-12-31
 
CVE-2003-1428

 

 
Gallery 1.3.3 creates directories with insecure permissions, which allows local users to read, modify, or delete photos.

 


Copyright 2024, cxsecurity.com

 

Back to Top