Описание
Unspecified vulnerability in util.php in Gallery before 1.5.2-pl2 allows remote authenticated users with trick an owner into modifying stored album data and possibly executing arbitrary code via unspecified vectors involving a crafted link to a crafted file.
Ссылки
- Patch
- PatchVendor Advisory
- Patch
- URL Repurposed
- Patch
- Patch
- Patch
- PatchVendor Advisory
- Patch
- URL Repurposed
- Patch
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:gallery_project:gallery:1.3.4:*:*:*:*:*:*:*
cpe:2.3:a:gallery_project:gallery:1.4:*:*:*:*:*:*:*
cpe:2.3:a:gallery_project:gallery:1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:gallery_project:gallery:1.4.2:*:*:*:*:*:*:*
cpe:2.3:a:gallery_project:gallery:1.4.3_pl1:*:*:*:*:*:*:*
cpe:2.3:a:gallery_project:gallery:1.4.3_pl2:*:*:*:*:*:*:*
cpe:2.3:a:gallery_project:gallery:1.4.4_pl2:*:*:*:*:*:*:*
cpe:2.3:a:gallery_project:gallery:1.4.4_pl3:*:*:*:*:*:*:*
cpe:2.3:a:gallery_project:gallery:1.4.4_pl4:*:*:*:*:*:*:*
cpe:2.3:a:gallery_project:gallery:1.4.4_pl5:*:*:*:*:*:*:*
cpe:2.3:a:gallery_project:gallery:1.4_pl1:*:*:*:*:*:*:*
cpe:2.3:a:gallery_project:gallery:1.4_pl2:*:*:*:*:*:*:*
cpe:2.3:a:gallery_project:gallery:1.5:*:*:*:*:*:*:*
cpe:2.3:a:gallery_project:gallery:1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:gallery_project:gallery:1.5.1_rc2:*:*:*:*:*:*:*
cpe:2.3:a:gallery_project:gallery:1.5.2_rc2:*:*:*:*:*:*:*
EPSS
Процентиль: 84%
0.02212
Низкий
6.5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
debian
почти 20 лет назад
Unspecified vulnerability in util.php in Gallery before 1.5.2-pl2 allo ...
github
почти 4 года назад
Unspecified vulnerability in util.php in Gallery before 1.5.2-pl2 allows remote authenticated users with trick an owner into modifying stored album data and possibly executing arbitrary code via unspecified vectors involving a crafted link to a crafted file.
EPSS
Процентиль: 84%
0.02212
Низкий
6.5 Medium
CVSS2
Дефекты
NVD-CWE-Other