vendor:
Bilder Galerie
by:
Crackers_Child
N/A
CVSS
MEDIUM
Remote File Include
98
CWE
Product Name: Bilder Galerie
Affected Version From: 1.1
Affected Version To: 1.1
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested:
2007
MatPo Bilder Galerie 1.1 Remote File Include Vulnerability
The vulnerability allows remote attackers to include arbitrary files via a URL in the config[root_ordner] parameter in thumbnail.php.
Mitigation:
Apply a patch or update to a newer version of the software.