73 matches found
Debian DSA-1404-1 : gallery2 - programming error
Nicklous Roberts discovered that the Reupload module of Gallery 2, a web-based photo management application, allowed unauthorized users to edit Gallery's data file. The oldstable distribution sarge does not contain a gallery2 package. The previous gallery package is not affected by this...
DSA-1404-1 gallery2 - privilege escalation
Bulletin has no description...
Fedora 7 : gallery2-2.2-0.7.svn20070831.fc7 (2007-2020)
Security fix release for Gallery 2.2 series. CVE text: Multiple unspecified vulnerabilities in Gallery before 2.2.3 allow attackers to 1 rename items, 2 read and modify item properties, or 3 lock and replace items via unknown vectors in a the WebDAV module; and 4 edit unspecified data files using...
CVE-2006-6962
PHP remote file inclusion vulnerability in rsgallery2.html.php in the RS Gallery2 component comrsgallery2 1.11.2 for Joomla! allows attackers to execute arbitrary PHP code via the mosConfigabsolutepath parameter. NOTE: this issue may overlap CVE-2006-5047...
CVE-2006-6962
The CVE-2006-6962 issue affects RS Gallery2 (com_rsgallery2) for Joomla! 1.11.2, where the mosConfig_absolute_path parameter enables PHP remote file inclusion and arbitrary code execution. This is a PHP RFI via rsgallery2.html.php, as described in the NVD entry. Related entries note potential ove...
CVE-2006-5046
Unspecified vulnerability in RS Gallery2 comrsgallery2 1.11.3 and earlier for Joomla! has unspecified impact and attack vectors, related to lack of "hardened language files."...
CVE-2006-5047
Unspecified vulnerability in rsgallery2.html.php in RS Gallery2 component comrsgallery2 before 1.11.3 for Joomla! allows attackers to execute arbitrary code...
CVE-2006-5046
Technical details are not publicly available in the provided documents for CVE-2006-5046; monitor for updates.
CVE-2006-5047
The CVE-2006-5047 entry concerns the RS Gallery2 Joomla! component (com_rsgallery2) prior to version 1.11.3, where an unspecified vulnerability in rsgallery2.html.php could allow an attacker to execute arbitrary code. The exact root cause, exploitable conditions, affected subcomponents, and avail...
CVE-2006-5046
Unspecified vulnerability in RS Gallery2 comrsgallery2 1.11.3 and earlier for Joomla! has unspecified impact and attack vectors, related to lack of "hardened language files."...
CVE-2006-5047
Unspecified vulnerability in rsgallery2.html.php in RS Gallery2 component comrsgallery2 before 1.11.3 for Joomla! allows attackers to execute arbitrary code...
FreeBSD : gallery2 -- file disclosure vulnerability (47bdabcf-3cf9-11da-baa2-0004614cc33d)
Michael Dipper wrote : A vulnerability has been discovered in gallery, which allows remote users unauthorized access to files on the webserver. A remote user accessing gallery over the web may use specially crafted HTTP parameters to access arbitrary files located on the webserver. All files...
Gallery 2 Multiple Vulnerabilities
GulfTech Security Research March 02, 2006 Vendor : Bharat Mediratta URL : http://gallery.menalto.com/ Version : Gallery2 = 2.0.2 Risk : Multiple Vulnerabilities Description: Gallery2, the open source web based photo album organizer is one of the most popular php web applications available today...