W00t Gallery Index.PHP Remote Authentication Bypass Vulnerability

Bugtraq ID:	21590
Class:	Design Error
CVE:
Remote:	Yes
Local:	No
Published:	Dec 14 2006 12:00AM
Updated:	Dec 15 2006 07:48PM
Credit:	The vendor reported this issue.
Vulnerable:	W00t Gallery W00t Gallery 1.4
Not Vulnerable:	W00t Gallery W00t Gallery 1.5.1

W00t Gallery Index.PHP Remote Authentication Bypass Vulnerability

w00t Gallery is prone to a remote authentication-bypass vulnerability.

The vulnerability arises because of insufficient security controls in 'index.php', which can be leveraged to bypass authentication.

An attacker can exploit this issue to gain administrative access to a vulnerable application.

w00t Gallery version 1.4.0 is vulnerable to this issue; prior versions may also be affected.

W00t Gallery Index.PHP Remote Authentication Bypass Vulnerability

An attacker can use a web client to exploit this issue.

W00t Gallery Index.PHP Remote Authentication Bypass Vulnerability

Solution:
The vendor has addressed this issue in version 1.5.1.


W00t Gallery W00t Gallery 1.4

• W00t Gallery w00tgallery1_5_1.zip
  http://downloads.sourceforge.net/w00tgallery/w00tgallery1_5_1.zip

W00t Gallery Index.PHP Remote Authentication Bypass Vulnerability

References:

• Release Name: w00t Gallery v1.5.1 (w00t Gallery)
  
• w00t Gallery HomePage (W00t Gallery)