Phpmygallery » Phpmygallery : Security Vulnerabilities, CVEs,

CVE-2008-6318

PHP remote file inclusion vulnerability in _conf/_php-core/common-tpl-vars.php in PHPmyGallery 1.5 beta allows remote attackers to execute arbitrary PHP code via a URL in the admindir parameter, a different vector than CVE-2008-6317.
Max CVSS
7.5
EPSS Score
0.44%
Published
2009-02-27
Updated
2017-09-29

CVE-2008-6317

Directory traversal vulnerability in _conf/_php-core/common-tpl-vars.php in PHPmyGallery 1.5 beta allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the conf[lang] parameter, a different issue than CVE-2008-6318. NOTE: this might be the same issue as CVE-2008-6316.
Max CVSS
6.8
EPSS Score
0.29%
Published
2009-02-27
Updated
2017-09-29

CVE-2008-6316

Directory traversal vulnerability in _conf/core/common-tpl-vars.php in PHPmyGallery 1.0 beta2 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter, a different issue than CVE-2008-6316 and a different vector than CVE-2008-6318.
Max CVSS
6.8
EPSS Score
0.29%
Published
2009-02-27
Updated
2017-09-29

CVE-2008-6315

PHP remote file inclusion vulnerability in _conf/core/common-tpl-vars.php in PHPmyGallery 1.0 beta2 allows remote attackers to execute arbitrary PHP code via a URL in the confdir parameter, a different issue than CVE-2008-6316.
Max CVSS
7.5
EPSS Score
0.44%
Published
2009-02-27
Updated
2017-09-29

CVE-2008-5598

Directory traversal vulnerability in index.php in PHPmyGallery 1.51 gold allows remote attackers to list arbitrary directories via a .. (dot dot) in the group parameter.
Max CVSS
5.0
EPSS Score
1.14%
Published
2008-12-16
Updated
2017-09-29
5 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close