Pixaria : Security Vulnerabilities, CVEs,
Absolute path traversal vulnerability in pixaria.image.php in Pixaria Gallery 2.0.0 through 2.3.5 allows remote attackers to read arbitrary files via a base64-encoded file parameter.
Max CVSS
7.8
EPSS Score
0.87%
Published
2009-08-21
Updated
2017-09-19
PHP remote file inclusion vulnerability in resources/includes/class.Smarty.php in Pixaria Gallery before 1.4.3 allows remote attackers to execute arbitrary PHP code via a URL in the cfg[sys][base_path] parameter.
Max CVSS
7.5
EPSS Score
3.07%
Published
2007-05-02
Updated
2018-10-16
Multiple PHP remote file inclusion vulnerabilities in Pixaria Gallery before 1.4.3 allow remote attackers to execute arbitrary PHP code via a URL in the cfg[sys][base_path] parameter to psg.smarty.lib.php and certain include and library scripts, a different vector than CVE-2007-2457.
Max CVSS
7.5
EPSS Score
2.15%
Published
2007-05-02
Updated
2017-10-11
3 vulnerabilities found