header-logo
Suggest Exploit
vendor:
DUgallery
by:
SecurityFocus
7.5
CVSS
HIGH
Authentication Bypass
287
CWE
Product Name: DUgallery
Affected Version From: 3
Affected Version To: 3
Patch Exists: N/A
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2009

DUgallery Authentication Bypass Vulnerability

DUgallery is prone to an authentication-bypass vulnerability. An attacker can exploit this issue to gain unauthorized administrative access to the affected application. Successfully exploiting this issue will lead to other attacks.

Mitigation:

Ensure that authentication is properly enforced and that access to sensitive resources is restricted to authorized users.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/36049/info

DUgallery is prone to an authentication-bypass vulnerability.

An attacker can exploit this issue to gain unauthorized administrative access to the affected application. Successfully exploiting this issue will lead to other attacks.

DUgallery 3.0 is vulnerable; other versions may also be affected. 

The following example URI is available:

http://www.example.com/Accessories/admin/edit.asp?iPic=[PictureID]

Navigation

Suggest Exploit

Services By CQR