EUVD-2007-2063

Malware in sbrugna...

EUVD-2008-0151

Malware in sbrugna...

EUVD-2002-2109

Malware in sbrugna...

EUVD-2002-2102

Malware in sbrugna...

Debian Security Advisory DSA 138-1 (gallery)

The remote host is missing an update to gallery announced via advisory DSA 138-1. OpenVAS Vulnerability Test $Id: deb1381.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 138-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

CVE-2008-0138

PHP remote file inclusion vulnerability in xoopsgallery/initbasic.php in the modgallery module for XOOPS, when registerglobals is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the GALLERYBASEDIR parameter...

XOOPS mod_gallery Zend_Hash_key + Extract - Remote File Inclusion

---- XOOPS modgallery ZendHashkey + Extract RFI ... ITDefence.ru Antichat.ru XOOPS modgallery ZendHashkey + Extract REMOTE FILE INCLUDE Eugene Minaev [email protected] / \ \ \ / .\ / /// // / \ / \ // / / / /// /\ / / / / // / / / / / /\ / / / / / / / / / / / //\ \ / / / / // / // / /\...

XOOPS mod_gallery Zend_Hash_key + Extract RFI Vulnerability

Exploit for unknown platform in category web applications =========================================================== XOOPS modgallery ZendHashkey + Extract RFI Vulnerability =========================================================== ---- XOOPS modgallery ZendHashkey + Extract RFI ... ITDefence....

CVE-2007-2575

PHP remote file inclusion vulnerability in watermark.php in the vm aka Jean-Francois Laflamme watermark 0.4.1 mod for Gallery allows remote attackers to execute arbitrary PHP code via a URL in the GALLERYBASEDIR parameter...

Gallery 1.2.5 (GALLERY_BASEDIR) Multiple RFI Vulnerabilities

No description provided by source. Gallery 1.2.5 = Remote File Include Vulnerablites D.Script: http://www.gnu-darwin.org/packages/x86/www/gallery-1.2.5.tgz Exploit:Path/errors/needinit.php?GALLERYBASEDIR=Shell Exploit:Path/errors/reconfigure.php?GALLERYBASEDIR=Shell...

StoreFront for Gallery (GALLERY_BASEDIR) RFI Vulnerabilities

Exploit for unknown platform in category web applications ============================================================ StoreFront for Gallery GALLERYBASEDIR RFI Vulnerabilities ============================================================ StoreFront for Gallery GALLERYBASEDIR Remote File Inclusion...

StoreFront for Gallery - GALLERY_BASEDIR Remote File Inclusion

StoreFront for Gallery - GALLERYBASEDIR Remote File Inclusion StoreFront for Gallery GALLERYBASEDIR Remote File Inclusion Vulnerabilities D.Script: http://www.dalton.net/ppstorefront/ppstorefront.zip Discovered by: Alkomandoz Hacker Homepage: http://Www.asb-may.net Exploit:...

Gallery 1.2.5 - 'GALLERY_BASEDIR' Multiple Remote File Inclusions

Gallery 1.2.5 = Remote File Include Vulnerablites D.Script: http://www.gnu-darwin.org/packages/x86/www/gallery-1.2.5.tgz Exploit:Path/errors/needinit.php?GALLERYBASEDIR=Shell Exploit:Path/errors/reconfigure.php?GALLERYBASEDIR=Shell Exploit:Path/errors/unconfigured.php?GALLERYBASEDIR=Shell...

Gallery 1.2.5 - GALLERY_BASEDIR Multiple Remote File Inclusions

Gallery 1.2.5 - GALLERYBASEDIR Multiple Remote File Inclusions Gallery 1.2.5 = Remote File Include Vulnerablites D.Script: http://www.gnu-darwin.org/packages/x86/www/gallery-1.2.5.tgz Exploit:Path/errors/needinit.php?GALLERYBASEDIR=Shell Exploit:Path/errors/reconfigure.php?GALLERYBASEDIR=Shell...

CVE-2002-2130

CVE-2002-2130 affects Gallery 1.3.2, specifically the publish_xp_docs.php module. The root cause is that the GALLERY_BASEDIR parameter can be modified to reference a URL on a remote web server that contains code, allowing remote attackers to execute arbitrary PHP code. Impact is described as remo...

CVE-2003-1227

PHP remote file include vulnerability in index.php for Gallery 1.4 and 1.4-pl1, when running on Windows or in Configuration mode on Unix, allows remote attackers to inject arbitrary PHP code via a URL in the GALLERYBASEDIR parameter, a different vulnerability than CVE-2002-1412. NOTE: this issue...

CVE-2004-2124

The registerglobals simulation capability in Gallery 1.3.1 through 1.4.1 allows remote attackers to modify the HTTPPOSTVARS variable and conduct a PHP remote file inclusion attack via the GALLERYBASEDIR parameter, a different vulnerability than CVE-2002-1412...

CVE-2002-1412

CVE-2002-1412 affects Gallery (Gallery project photo album) prior to 1.3.1. Affected component is the GALLERY_BASEDIR handling in the Gallery codebase. The underlying issue allows local and possibly remote attackers to execute arbitrary code by supplying a modified GALLERY_BASEDIR that points to ...