PhpWebGallery <= 1.7.2 Session Hijacking / Code Execution Exploit

No description provided by source. ?php / ------------------------------------------------------------------------ PhpWebGallery = 1.7.2 Remote Session Hijacking / Code Execution Exploit ------------------------------------------------------------------------ author...: EgiX mail.....:...

PhpWebGallery 1.4.1 category.php Multiple Parameter XSS

No description provided by source. source: http://www.securityfocus.com/bid/17421/info PHPWebGallery is prone to multiple cross-site scripting vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage these issues to...

PhpWebGallery 1.3.4 - Remote Blind SQL Injection Exploit

No description provided by source. !/usr/bin/perl -W PhpWebGallery 1.3.4 Blind SQL Injection Exploit Download: http://puzzle.dl.sourceforge.net/sourceforge/phpwebgallery/phpwebgallery-1.3.4.tar.bz2 File affected: picture.php exploit written by ka0x ka0x01 at gmail dot com D.O.M Labs - Security...

Directory traversal

Multiple directory traversal vulnerabilities in PhpWebGallery 1.3.4 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the 1 userlanguage and 2 usertemplate parameters to a init.inc.php, and b the userlanguage parameter to isadmin.inc.php...

CVE-2008-4702

Multiple directory traversal vulnerabilities in PhpWebGallery 1.3.4 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the 1 userlanguage and 2 usertemplate parameters to a init.inc.php, and b the userlanguage parameter to isadmin.inc.php...

CVE-2008-4702

CVE-2008-4702 affects PhpWebGallery 1.3.4. The vulnerability is a directory traversal flaw allowing remote attackers to include and execute arbitrary local files via a .. in (1) user[language] and (2) user[template] parameters to init.inc.php, and (b) the user[language] parameter to isadmin.inc.p...

CVE-2008-4702

Multiple directory traversal vulnerabilities in PhpWebGallery 1.3.4 allow remote attackers to include and execute arbitrary local files via a .. dot dot in the 1 userlanguage and 2 usertemplate parameters to a init.inc.php, and b the userlanguage parameter to isadmin.inc.php...

CVE-2008-4645

plugins/eventtracer/eventlist.php in PhpWebGallery 1.7.2 and earlier allows remote authenticated administrators to execute arbitrary PHP code via PHP sequences in the sort parameter, which is processed by createfunction...

Code injection

plugins/eventtracer/eventlist.php in PhpWebGallery 1.7.2 and earlier allows remote authenticated administrators to execute arbitrary PHP code via PHP sequences in the sort parameter, which is processed by createfunction...

CVE-2008-4645

plugins/eventtracer/eventlist.php in PhpWebGallery 1.7.2 and earlier allows remote authenticated administrators to execute arbitrary PHP code via PHP sequences in the sort parameter, which is processed by createfunction...

CVE-2008-4645

In PhpWebGallery, versions up to 1.7.2 are vulnerable to CVE-2008-4645. The issue arises in plugins/event_tracer/event_list.php where remote authenticated administrators can cause arbitrary PHP code execution by injecting PHP sequences into the sort parameter, which is processed by create_functio...

PHPWebGallery Multiple XSS Vulnerabilities (Oct 2008)

PHPWebGallery is prone to multiple cross-site scripting XSS and script inclusion vulnerabilities. SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-on...

CVE-2008-4591

Multiple cross-site scripting XSS vulnerabilities in admin/include/isadmin.inc.php in PhpWebGallery 1.3.4 allow remote attackers to inject arbitrary web script or HTML via the 1 langaccessforbiden and 2 langidenttitle parameters...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in admin/include/isadmin.inc.php in PhpWebGallery 1.3.4 allow remote attackers to inject arbitrary web script or HTML via the 1 langaccessforbiden and 2 langidenttitle parameters...

CVE-2008-4591

CVE-2008-4591: PhpWebGallery 1.3.4 is affected by multiple XSS in admin/include/isadmin.inc.php. The vulnerabilities allow injecting arbitrary script/HTML via the parameters lang[access_forbiden] and lang[ident_title]. Connected records confirm affected software and component/file path. The preci...

CVE-2008-4591

Multiple cross-site scripting XSS vulnerabilities in admin/include/isadmin.inc.php in PhpWebGallery 1.3.4 allow remote attackers to inject arbitrary web script or HTML via the 1 langaccessforbiden and 2 langidenttitle parameters...

phpwebgallery-hijackexec.txt

$b'.$sort.';' 64. ; An attacker could be able to inject and execute PHP code through $GET'sort', that is passed to createfunction at line 63 see http://www.securityfocus.com/bid/31398. Only admin can access to the plugins management interface, but the attacker might be able to retrieve a valid...

PhpWebGallery &lt;= 1.7.2 Session Hijacking / Code Execution Exploit

No description provided by source. ?php / ------------------------------------------------------------------------ PhpWebGallery = 1.7.2 Remote Session Hijacking / Code Execution Exploit ------------------------------------------------------------------------ author...: EgiX mail.....:...

PhpWebGallery comments.php sort_by Parameter SQL Injection

The remote host is running PhpWebGallery, an open source photo gallery application written in PHP. The installed version of PhpWebGallery fails to sanitize user-supplied input to the 'sortby' parameter of the 'comments.php' script before using it in a database query. Regardless of PHP's...

PhpWebGallery <= 1.7.2 Session Hijacking / Code Execution Exploit

Exploit for unknown platform in category web applications ================================================================= PhpWebGallery $b'.$sort.';' 64. ; An attacker could be able to inject and execute PHP code through $GET'sort', that is passed to createfunction at line 63 see...