TFT Gallery <= 0.10 [Password Disclosure] Remote Exploit

No description provided by source. !/usr/bin/perl Copyright C undefined1 This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or at your option any...

TFT Gallery XSS And Directory Traversal Vulnerabilities

This host is installed with TFT Gallery and is prone to Cross- Site Scripting and Directory Traversal vulnerabilities. OpenVAS Vulnerability Test $Id: secpodtftgallerymultvulnnov09.nasl 5122 2017-01-27 12:16:00Z teissa $ TFT Gallery XSS And Directory Traversal Vulnerabilities Authors: Nikita MR...

TFTgallery < 0.13.1 XSS And Directory Traversal Vulnerabilities - Active Check

TFTgallery is prone to cross-site scripting XSS and directory traversal vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

TFT Gallery Detection

This host is running TFT Gallery, an easy-to-use image gallery using PHP. OpenVAS Vulnerability Test $Id: tftgallerydetect.nasl 5744 2017-03-28 07:25:23Z cfi $ TFT Gallery Detection Authors: Michael Meyer Copyright: Copyright c 2009 Greenbone Networks GmbH This program is free software; you can...

TFTgallery Detection (HTTP)

HTTP based detection of TFTgallery. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.100324";...

CVE-2006-6347

Unrestricted file upload vulnerability in TFT-Gallery allows remote authenticated administrators to upload arbitrary .php files, possibly using admin/index.php. NOTE: this can be leveraged with CVE-2006-1412 to create a remote unauthenticated vector...

CVE-2006-6347

CVE-2006-6347 concerns TFT Gallery 0.10. It allows an unrestricted file upload by remote authenticated administrators (to upload arbitrary .php files, potentially via admin/index.php). The vulnerability can be combined with CVE-2006-1412 to yield a remote unauthenticated vector. Base metrics indi...

Multiple bugs in TFT-Gallery

Script Name: TFT-Gallery Authors: Mike Scalora, Eric Thelin, Sascha Lorenz & Jan Berndt Website: http://tftgallery.sourceforge.net Bug Report: NetJackal njAThackerzDOTir & nima501ATyahooDOTcom Status: Patch not released First i should apologize for my bad english. Intro: TFT-Gallery is a PHP-base...

CVE-2006-1412

TFT Gallery 0.10 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the admin password file and obtain password hashes via a direct request to admin/passwd...

Improper access control

TFT Gallery 0.10 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the admin password file and obtain password hashes via a direct request to admin/passwd...

CVE-2006-1412

CVE-2006-1412 affects TFT Gallery 0.10. The issue is improper access control: sensitive information is stored under the web root, allowing remote attackers to download the admin password file and obtain password hashes via a direct request to admin/passwd. Related records note that CVE-2006-6347 ...

CVE-2006-1412

TFT Gallery 0.10 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the admin password file and obtain password hashes via a direct request to admin/passwd...

TFT Gallery <= 0.10 [Password Disclosure] Remote Exploit

Exploit for unknown platform in category web applications ======================================================== TFT Gallery = 0.10 Password Disclosure Remote Exploit ======================================================== !/usr/bin/perl Copyright C undefined1 This program is free software; yo...