6 matches found
FreeBSD Ports: gallery
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Debian DSA-512-1 : gallery - unauthenticated access
A vulnerability was discovered in gallery, a web-based photo album written in php, whereby a remote attacker could gain access to the gallery 'admin' user without proper authentication. No CVE candidate was available for this vulnerability at the time of release. %NASLMINLEVEL 70300 C Tenable...
CVE-2004-0522
Gallery 1.4.3 and earlier allows remote attackers to bypass authentication and obtain Gallery administrator privileges...
Gallery init.php Authentication Bypass
The version of Gallery hosted on the remote web server is affected by an authentication bypass issue. A flaw exists that may allow an attacker to bypass the authentication mechanism of this software by making requests including the options 'GALLERYEMBEDDEDINSIDE' and 'GALLERYEMBEDDEDINSIDETYPE'. ...
CVE-2004-0522
Gallery 1.4.3 and earlier allows remote attackers to bypass authentication and obtain Gallery administrator privileges...
CVE-2004-0522
CVE-2004-0522 affects Gallery; multiple OpenVAS entries document a remote authentication bypass that lets an attacker gain administrator privileges. Vulnerable are Gallery versions up to 1.4.3 (and variants prior to 1.4.3-pl1 per Nessus notes) with a network-based attack surface (CVSS v2 base 10....