Planetgallery@* Security Vulnerabilities and Issues — Planetgallery@* CVE List

Lucene search

Planet ConceptPlanetgallery*

2 matches found

CVE•added 2006/07/24 12:19 p.m.•36 views

CVE-2006-3676

admin/gallery_admin.php in planetGallery before 14.07.2006 allows remote attackers to execute arbitrary PHP code by uploading files with a double extension and directly accessing the file in the images directory, which bypasses a regular expression check for safe file types.

5.1CVSS7.7AI score0.00608EPSS

CVE•added 2006/05/01 9:6 p.m.•32 views

CVE-2006-2116

planetGallery allows remote attackers to gain administrator privileges via a direct request to admin/gallery_admin.php.

7.5CVSS6.9AI score0.03383EPSS