The addImage method for admin.class.php in Image Gallery Web Application 0.9.10 does not properly check filenames, which allows remote attackers to upload and execute arbitrary files.
References
Configurations
History
20 Nov 2024, 23:50
Type | Values Removed | Values Added |
---|---|---|
References | () http://marc.info/?l=bugtraq&m=110323479715051&w=2 - | |
References | () http://www.securityfocus.com/bid/11990 - Patch | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/18531 - |
Information
Published : 2004-12-31 05:00
Updated : 2024-11-20 23:50
NVD link : CVE-2004-1408
Mitre link : CVE-2004-1408
CVE.ORG link : CVE-2004-1408
JSON object : View
Products Affected
singapore
- image_gallery_web_application
CWE