4 matches found
CVE-2010-4406
Directory traversal vulnerability in gallery.php in Brunetton LittlePhpGallery 1.0.2, when magicquotesgpc is disabled, allows remote attackers to list, include, and execute arbitrary local files via a ..// dot dot slash slash in the repertoire parameter...
CVE-2010-4406
CVE-2010-4406 concerns a local-file-include (LFI) in LittlePhpGallery 1.0.2 (gallery.php). When magic_quotes_gpc is disabled, an attacker can craft the repertoire parameter to a ../ path to list, include, or execute arbitrary local files. This is a classic LFI/Directory Traversal in the web app, ...
LittlePhpGallery 'gallery.php' Local File Include Vulnerability
LittlePhpGallery is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input. An attacker can exploit this vulnerability to obtain potentially sensitive information and to execute arbitrary local scripts in the context of the webserver process. This ma...
CVE-2010-4406
creationtimestamp| type| source ---|---|--- 2010-12-01 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/15656...