RSS   Vulnerabilities for 'Gallery'   RSS

2007-09-04
 
CVE-2007-4650

CWE-264
 
 
Multiple unspecified vulnerabilities in Gallery before 2.2.3 allow attackers to (1) rename items, (2) read and modify item properties, or (3) lock and replace items via unknown vectors in (a) the WebDAV module; and (4) edit unspecified data files using "linked items" in WebDAV and (b) Reupload modules.

 
2003-12-31
 
CVE-2003-1428

 
 
Gallery 1.3.3 creates directories with insecure permissions, which allows local users to read, modify, or delete photos.

 

Copyright 2024, cxsecurity.com

 

Back to Top