vendor:
My_Gallery
by:
Jerome Athias
9
CVSS
CRITICAL
Arbitrary File Download Vulnerability
N/A
CWE
Product Name: My_Gallery
Affected Version From: 2.3
Affected Version To: 2.3
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit:
N/A
Other Scripts:
N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References:
N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008
e107 My_Gallery Plugin Arbitrary File Download Vulnerability
A photo gallery for e107, powered by Highslide JS script. with random gallery menu and navigation menu. The vulnerability is caused due to an input validation error in dload.php when processing arguments passed to the 'file' parameter. This can be exploited to download arbitrary files from the affected system.
Mitigation:
Edit the source code to ensure that input is properly validated.