CVE-2022-48513

Vulnerability of identity verification being bypassed in the Gallery module. Successful exploitation of this vulnerability may cause out-of-bounds access...

CVE-2022-48513

CVE-2022-48513 describes a vulnerability in the Gallery module where identity verification can be bypassed, potentially enabling out-of-bounds access. The NVD/NIST entry notes a critical severity (CVSS v3.1, 9.8), with network attack vector, no user interaction, and no privileges required, and it...

CVE-2022-48513

Vulnerability of identity verification being bypassed in the Gallery module. Successful exploitation of this vulnerability may cause out-of-bounds access...

PT-2023-15839 · Gallery · Gallery

Name of the Vulnerable Software and Affected Versions: Gallery module affected versions not specified Description: The issue concerns a vulnerability in the identity verification process of the Gallery module, which can be bypassed. This could potentially lead to out-of-bounds access if...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a security vulnerability that stems from an authentication bypass via spoofing vulnerability in the Gallery module. An attacker...

CVE-2022-40932

In Zoo Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of the "gallery" file of the "Gallery" module in the background management system...

CVE-2022-40932

In Zoo Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of the "gallery" file of the "Gallery" module in the background management system...

Privilege escalation

In Zoo Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of the "gallery" file of the "Gallery" module in the background management system...

CVE-2022-40932

CVE-2022-40932 affects Zoo Management System v1.0. The vulnerability is an arbitrary file upload in the Gallery module’s picture upload point of the background management system (Gallery file). Impact is described as high for confidentiality, integrity, and availability. Practical remediation det...

CVE-2022-40932

In Zoo Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of the "gallery" file of the "Gallery" module in the background management system...

CVE-2022-40932

In Zoo Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of the "gallery" file of the "Gallery" module in the background management system...

Zoo Management System 代码问题漏洞

Zoo Management System is a zoo management system by Carlo Montero, an individual developer. It provides an online and automated platform for zoo organizations to manage their daily records. A security vulnerability exists in Zoo Management System v1.0, which originates from an arbitrary file uplo...

PT-2022-25630 · Unknown · Zoo Management System

Name of the Vulnerable Software and Affected Versions: Zoo Management System version 1.0 Description: The issue is related to an arbitrary file upload vulnerability. This vulnerability is located in the picture upload point of the gallery file of the Gallery module in the background management...

PT-2020-4389 · Microsoft · Windows +2

Name of the Vulnerable Software and Affected Versions: PowerShellGet V2 module affected versions not specified Description: The issue is related to security mechanism shortcomings in the PowerShellGet module of the Windows operating system. It allows an attacker to bypass Windows Defender...

Contrexx multiple input validation vulnerabilities-vulnerability warning-the black bar safety net

Affected system: Contrexx Contrexx 1.0.4 Not affected system: Contrexx Contrexx 1.0.5 Description: -------------------------------------------------------------------------------- BUGTRAQ ID: 1 4 3 5 2 CVECAN ID: CVE-2 0 0 5-2 4 1 5 Contrexx is an open source content management system. Contrexx...

LANAI CMS 1.2.14 GALLERY Module gid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/25193/info LANAI CMS is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting these issues could allow an attacker to...

MKPortal 1.1 Gallery Module SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26860/info MKPortal is prone to an SQL-injection vulnerability because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an attacker to...

Invision Power Services Invision Gallery 1.0.1 - Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/9944/info It has been reported that Invision Gallery may be prone to multiple sql injection vulnerabilities, allowing an attacker to influence SQL query logic. The issues exist due to insufficient sanitization of...

PHP-Nuke Gallery 1.3 Module - 'artid' Parameter SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/27957/info The Gallery module for PHP-Nuke is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an...

Cross site scripting

Cross-site scripting XSS vulnerability in the Drag & Drop Gallery module 6.x for Drupal allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...