Lucene search
MitreCVE-2007-6689HistoryJan 17, 2008 - 2:00 a.m.
CVE-2007-6689
2008-01-1702:00:00
CWE-20
mitre
web.nvd.nist.gov
23
menalto gallery
security vulnerability
arbitrary code execution
file uploads
nvd
cve-2007-6689
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.3
Confidence
Low
EPSS
0.011
Percentile
84.7%
Menalto Gallery before 2.2.4 does not properly check for malicious file extensions during file uploads, which allows attackers to execute arbitrary code via the (1) Core application or (2) MIME module.
Affected configurations
Node
menaltogalleryRange≤2.2.3
Related
cvelist
cvelist
CVE-2007-6689
2008-01-17 01:00:00
ubuntucve
ubuntucve
CVE-2007-6689
2008-01-17 00:00:00
prion
prion
Design/Logic Flaw
2008-01-17 02:00:00
nvd
nvd
CVE-2007-6689
2008-01-17 02:00:00
redhatcve
redhatcve
CVE-2007-6689
2019-10-04 21:30:19
openvas
openvas
FreeBSD Ports: gallery2
2008-09-04 00:00:00
FreeBSD Ports: gallery2
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200802-04 (gallery)
2008-09-24 00:00:00
freebsd
freebsd
gallery2 -- multiple vulnerabilities
2007-12-24 00:00:00
nessus
nessus
FreeBSD : gallery2 -- multiple vulnerabilities (4aab7bcd-b294-11dc-a6f0-00a0cce0781e)
2007-12-26 00:00:00
GLSA-200802-04 : Gallery: Multiple vulnerabilities
2008-02-12 00:00:00
gentoo
gentoo
Gallery: Multiple vulnerabilities
2008-02-11 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.3
Confidence
Low
EPSS
0.011
Percentile
84.7%
Related for CVE-2007-6689