2 matches found
CVE-2006-6347
Unrestricted file upload vulnerability in TFT-Gallery allows remote authenticated administrators to upload arbitrary .php files, possibly using admin/index.php. NOTE: this can be leveraged with CVE-2006-1412 to create a remote unauthenticated vector...
CVE-2006-6347
CVE-2006-6347 concerns TFT Gallery 0.10. It allows an unrestricted file upload by remote authenticated administrators (to upload arbitrary .php files, potentially via admin/index.php). The vulnerability can be combined with CVE-2006-1412 to yield a remote unauthenticated vector. Base metrics indi...