PhpWebGallery Information Disclosure Vulnerability
BID:30431
Info
PhpWebGallery Information Disclosure Vulnerability
| Bugtraq ID: | 30431 |
| Class: | Design Error |
| CVE: |
CVE-2008-3451 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 26 2008 12:00AM |
| Updated: | May 07 2015 05:25PM |
| Credit: | Pat |
| Vulnerable: |
PhpWebGallery PhpWebGallery 1.7.1 PhpWebGallery PhpWebGallery 1.7 |
| Not Vulnerable: |
PhpWebGallery PhpWebGallery 1.7.2 |
Discussion
PhpWebGallery Information Disclosure Vulnerability
PhpWebGallery is prone to a remote information-disclosure vulnerability because it fails to properly secure sensitive content.
Exploiting this issue can allow attackers to obtain sensitive data that may aid in further attacks.
Versions prior to PhpWebGallery 1.7.2 are affected.
PhpWebGallery is prone to a remote information-disclosure vulnerability because it fails to properly secure sensitive content.
Exploiting this issue can allow attackers to obtain sensitive data that may aid in further attacks.
Versions prior to PhpWebGallery 1.7.2 are affected.
Exploit / POC
PhpWebGallery Information Disclosure Vulnerability
Attackers can exploit this issue via a browser.
Attackers can exploit this issue via a browser.
Solution / Fix
PhpWebGallery Information Disclosure Vulnerability
Solution:
The vendor released PhpWebGallery 1.7.2 to address this issue.
PhpWebGallery PhpWebGallery 1.7
PhpWebGallery PhpWebGallery 1.7.1
Solution:
The vendor released PhpWebGallery 1.7.2 to address this issue.
PhpWebGallery PhpWebGallery 1.7
-
PhpWebGallery PhpWebGallery 1.7.2
http://download.gna.org/phpwebgallery/release/1.7/1.7.2/
PhpWebGallery PhpWebGallery 1.7.1
-
PhpWebGallery PhpWebGallery 1.7.2
http://download.gna.org/phpwebgallery/release/1.7/1.7.2/
References
PhpWebGallery Information Disclosure Vulnerability
References:
References:
- PhpWebGallery Homepage (PhpWebGallery)