Lucene search
K

8 matches found

Prion
Prion
added 2013/10/10 12:55 a.m.16 views

Security feature bypass

lib/flowplayer.swf.php in Gallery 3 before 3.0.9 does not properly remove query fragments, which allows remote attackers to have an unspecified impact via a replay attack, a different vulnerability than CVE-2013-2138...

7.5CVSS6.8AI score0.02707EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2013/10/10 12:0 a.m.55 views

CVE-2013-2138

The CVE-2013-2138 issue affects Gallery 3 before 3.0.8 where the uploadify and flowplayer SWF files do not properly remove query parameters and fragments, allowing an unspecified impact via a replay attack. Related entry CVE-2013-2240 notes that lib/flowplayer.swf.php in Gallery 3 before 3.0.9 al...

7.5CVSS6.5AI score0.02707EPSS
Exploits0References7Affected Software1
OpenVAS
OpenVAS
added 2013/08/20 12:0 a.m.21 views

Fedora Update for gallery3 FEDORA-2013-12384

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.02707EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2013/07/18 12:0 a.m.31 views

FreeBSD : gallery -- multiple vulnerabilities (9b037a0d-ef2c-11e2-b4a0-8c705af55518)

Red Hat Security Response Team reports : Gallery upstream has released 3.0.9 version, correcting two security flaws : Issue 1 - Improper stripping of URL fragments in flowplayer SWF file might lead to reply attacks a different flaw than CVE-2013-2138. Issue 2 - gallery3: Multiple information...

7.5CVSS5.3AI score0.02707EPSS
Exploits1References8
OpenVAS
OpenVAS
added 2013/07/16 12:0 a.m.17 views

Fedora Update for gallery3 FEDORA-2013-12424

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.02707EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2013/07/16 12:0 a.m.17 views

Fedora Update for gallery3 FEDORA-2013-12441

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.02707EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2013/06/18 12:0 a.m.19 views

Fedora Update for gallery3 FEDORA-2013-10138

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.02707EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2013/06/18 12:0 a.m.14 views

Fedora Update for gallery3 FEDORA-2013-10168

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.5AI score0.02707EPSS
Exploits0References2
Rows per page
Query Builder