Lucene search

MitreCVE-2007-6691

HistoryJan 17, 2008 - 2:00 a.m.

CVE-2007-6691

2008-01-1702:00:00

mitre

web.nvd.nist.gov

menalto gallery

cve-2007-6691

vulnerability

unspecified

impact

hotlink protection

url rewrite

webdav

comment module

item information disclosure

gallery application

slideshow

print modules

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

0.016

Percentile

87.5%

JSON

Multiple unspecified vulnerabilities in Menalto Gallery before 2.2.4 have unknown impact, related to (1) “hotlink protection” in the URL rewrite module, (2) a WebDAV view in the WebDAV module, (3) a comment view in the Comment module, (4) unspecified “item information disclosure attacks” in the Core module Gallery application, (5) the slideshow in the Slideshow module, and (6) multiple Print modules.

Affected configurations

Nvd

Node

menaltogalleryRange≤2.2.3

VendorProductVersionCPE
menaltogallery*cpe:2.3:a:menalto:gallery:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
menalto	gallery	*	cpe:2.3:a:menalto:gallery::::::::

References

bugs.gentoo.org/show_bug.cgi?id=203217

gallery.menalto.com/gallery_2.2.4_released

osvdb.org/41662

osvdb.org/41663

osvdb.org/41664

osvdb.org/41665

osvdb.org/41666

osvdb.org/41667

secunia.com/advisories/28898

security.gentoo.org/glsa/glsa-200802-04.xml

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.3

Confidence

Low

EPSS

0.016

Percentile

87.5%

JSON

Related for CVE-2007-6691