Lucene search
MitreCVELIST:CVE-2006-1128HistoryMar 09, 2006 - 10:00 p.m.
CVE-2006-1128
2006-03-0922:00:00
mitre
www.cve.org
2
Directory traversal vulnerability in the session handling class (GallerySession.class) in Gallery 2 up to 2.0.2 allows remote attackers to access and delete files by specifying the session in a cookie, which is used in constructing file paths before the session value is sanitized.
References
archives.neohapsis.com/archives/bugtraq/2006-02/0621.html
gallery.menalto.com/gallery_2.0.3_released
secunia.com/advisories/19104
securitytracker.com/id?1015717
www.gulftech.org/?node=research&article_id=00106-03022006
www.osvdb.org/23597
www.securityfocus.com/bid/16948
www.vupen.com/english/advisories/2006/0813
exchange.xforce.ibmcloud.com/vulnerabilities/25118
Related
prion
prion
Directory traversal
2006-03-09 22:02:00
cve
cve
CVE-2006-1128
2006-03-09 22:02:00
nvd
nvd
CVE-2006-1128
2006-03-09 22:02:00
exploitdb
exploitdb
Gallery 2 < 2.0.2 - Multiple Vulnerabilities
2016-03-02 00:00:00
exploitpack
exploitpack
Gallery 2 2.0.2 - Multiple Vulnerabilities
2016-03-02 00:00:00
nessus
nessus
Gallery < 2.0.3 IP Spoofing
2006-03-06 00:00:00