vendor:
Digital Eye Gallery
by:
Cold z3ro
5.5
CVSS
MEDIUM
Remote File Inclusion
File Inclusion
CWE
Product Name: Digital Eye Gallery
Affected Version From: 1.1 Beta
Affected Version To: 1.1 Beta
Patch Exists: NO
Related CWE:
CPE:
Platforms Tested:
2007
Digital Eye Gallery 1.1 Beta (module.php menu) Remote File Include Vulnerabilities
The vulnerability allows remote attackers to include arbitrary files via a parameter in the module.php menu parameter.
Mitigation:
Update to a fixed version of the software.