w00t Gallery index.php Arbitrary Installation Access

2006-12-14T05:18:57
ID OSVDB:32284
Type osvdb
Reporter OSVDB
Modified 2006-12-14T05:18:57

Description

Solution Description

Upgrade to version 1.5.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor Specific News/Changelog Entry: http://sourceforge.net/project/shownotes.php?release_id=471109 Secunia Advisory ID:23383 Keyword: aka "multi-gallery admin session spanning." ISS X-Force ID: 30886 CVE-2006-6616 Bugtraq ID: 21590