TinyWebGallery 1.8.4 - Local File Inclusion SQL Injection

TinyWebGallery 1.8.4 - Local File Inclusion SQL Injection source: https://www.securityfocus.com/bid/49393/info TinyWebGallery is prone to multiple local file-include and SQL-injection vulnerabilities. An attacker can exploit these issues to compromise the application, access or modify data, explo...

TinyWebGallery 1.8.4 - Local File Inclusion / SQL Injection

source: https://www.securityfocus.com/bid/49393/info TinyWebGallery is prone to multiple local file-include and SQL-injection vulnerabilities. An attacker can exploit these issues to compromise the application, access or modify data, exploit latent vulnerabilities in the underlying database, and...

TinyWebGallery 1.8.3 version multiple vulnerabilities-vulnerability warning-the black bar safety net

TinyWebGallery is a php photo album program, TinyWebGallery 1.8.3 contains multiple security vulnerabilities, including directory traversal andXSS, may lead to sensitive information disclosure. +info: Script: TinyWebGallery Version: 1.8.3 No fixes yet, might work on other versions too. Home:...

TinyWebGallery: XSS + Directory Traversal

Date: 01/02/2011 dd/MM/yyyy Script: TinyWebGallery Version: 1.8.3 No fixes yet, might work on other versions too. Home: http://www.tinywebgallery.com -- Vulnerability: Non-persistent XSS Where: File: /admin/index.php Parameters: sview, tview, dir, item. Examples:...

TinyWebGallery v 1.8.3 - Multiple Vulnerabilities

Exploit for php platform in category web applications Date: 01/02/2011 dd/MM/yyyy Script: TinyWebGallery Version: 1.8.3 No fixes yet, might work on other versions too. Home: http://www.tinywebgallery.com -- Vulnerability: Non-persistent XSS Where: File: /admin/index.php Parameters: sview, tview,...

TinyWebGallery Cross Site Scripting and Local File Include Vulnerabilities

TinyWebGallery is prone to local file-include and cross-site scripting vulnerabilities because the application fails to properly sanitize user- supplied input. A remote attacker may leverage the cross-site scripting issue to execute arbitrary script code in the browser of an unsuspecting user in...

TinyWebGallery Cross Site Scripting and Local File Include Vulnerabilities

TinyWebGallery is prone to local file-include and cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...

TinyWebGallery 1.8.3 Cross Site Scripting / Directory Traversal

Date: 01/02/2011 dd/MM/yyyy Script: TinyWebGallery Version: 1.8.3 No fixes yet, might work on other versions too. Home: http://www.tinywebgallery.com -- Vulnerability: Non-persistent XSS Where: File: /admin/index.php Parameters: sview, tview, dir, item. Examples:...

TinyWebGallery 1.8.3 - Cross-Site Scripting Local File Inclusion

TinyWebGallery 1.8.3 - Cross-Site Scripting Local File Inclusion source: https://www.securityfocus.com/bid/46086/info TinyWebGallery is prone to local file-include and cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. A remote attacker ma...

TinyWebGallery 1.8.3 - Multiple Vulnerabilities

TinyWebGallery 1.8.3 - Multiple Vulnerabilities Date: 01/02/2011 dd/MM/yyyy Script: TinyWebGallery Version: 1.8.3 No fixes yet, might work on other versions too. Home: http://www.tinywebgallery.com -- Vulnerability: Non-persistent XSS Where: File: /admin/index.php Parameters: sview, tview, dir,...

TinyWebGallery 1.8.3 - Cross-Site Scripting / Local File Inclusion

source: https://www.securityfocus.com/bid/46086/info TinyWebGallery is prone to local file-include and cross-site scripting vulnerabilities because the application fails to properly sanitize user-supplied input. A remote attacker may leverage the cross-site scripting issue to execute arbitrary...

TinyWebGallery 1.8.3 - Multiple Vulnerabilities

Date: 01/02/2011 dd/MM/yyyy Script: TinyWebGallery Version: 1.8.3 No fixes yet, might work on other versions too. Home: http://www.tinywebgallery.com -- Vulnerability: Non-persistent XSS Where: File: /admin/index.php Parameters: sview, tview, dir, item. Examples:...

TinyWebGallery 1.8.3 Remote File Inclusion

Exploit Title: TinyWebGallery v 1.8.3 Remote file include vulnerbility Google Dork: Photo Gallery powered by TinyWebGallery 1.8.3 Date: 26/1/2011 Author: DIES3L Software Link: http://www.tinywebgallery.com Version: v 1.8.3 Tested on: ubuntu + win7 Email : [email protected] Fichier : ibasic.inc.php...

TinyWebGallery Multiple Cross-Site Scripting Vulnerabilities

TinyWebGallery is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user- supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This can allow th...

Directory traversal

Directory traversal vulnerability in .include/init.php aka admin/include/init.php in QuiXplorer 2.3.2 and earlier, as used in TinyWebGallery TWG 1.7.6 and earlier, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the lang parameter to admin/index.php...

CVE-2009-1911

Directory traversal vulnerability in .include/init.php aka admin/include/init.php in QuiXplorer 2.3.2 and earlier, as used in TinyWebGallery TWG 1.7.6 and earlier, allows remote attackers to include and execute arbitrary local files via a .. dot dot in the lang parameter to admin/index.php...

TinyWebGallery lang Parameter Local File Inclusion

The remote host is running TinyWebGallery, a web-based photo gallery application written in PHP. The version of TinyWebGallery installed on the remote host fails to filter user-supplied input to the 'lang' parameter of the 'admin/include/init.php' script before using it to include PHP code...

TinyWebGallery <= 1.7.6 LFI / Remote Code Execution Exploit

?php / ----------------------------------------------------------- TinyWebGallery = 1.7.6 LFI / Remote Code Execution Exploit ----------------------------------------------------------- author...: travesti mail.....: travestiattravesti.in link.....: http://www.travesti.in details..: this...

TinyWebGallery Detection

The TinyWebGallery, a free php based photo album / gallery is running at this host. OpenVAS Vulnerability Test $Id: TinyWebGallerydetect.nasl 5747 2017-03-28 12:18:28Z cfi $ TinyWebGallery Detection Authors Michael Meyer Copyright: Copyright c 2009 Greenbone Networks GmbH This program is free...

TinyWebGallery <= 1.7.6 LFI / Remote Code Execution Exploit

No description provided by source. ?php / ----------------------------------------------------------- TinyWebGallery = 1.7.6 LFI / Remote Code Execution Exploit ----------------------------------------------------------- author...: EgiX mail.....: n0b0d13satgmaildotcom link.....:...