HIGH🇬🇧 English

CVE-2012-4343

CVSS 7.5v2.0pub. 2012-08-15upd. 2026-04-29

Multiple unspecified vulnerabilities in Gallery 3 before 3.0.4 allow attackers to execute arbitrary PHP code via unknown vectors.

oryginał EN
CVSS Vector
AV:N/AC:L/Au:N/C:P/I:P/A:P
  • Menalto Gallery

    APP
    Menalto
    3.03.0.13.0.2≤ 3.0.3
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2013-2138HIGH7.5ten sam produkt

The (1) uploadify and (2) flowplayer SWF files in Gallery 3 before 3.0.8 do not properly remove query paramete...

CVE-2013-2240HIGH7.5ten sam produkt

lib/flowplayer.swf.php in Gallery 3 before 3.0.9 does not properly remove query fragments, which allows remote...

CVE-2012-2405HIGH10.0ten sam produkt

Gallery 2 before 2.3.2 and 3 before 3.0.3 does not properly implement encryption, which has unspecified impact...

CVE-2008-2722HIGH7.5ten sam produkt

Menalto Gallery before 2.2.5 allows remote attackers to bypass permissions for sub-albums via a ZIP archive.

CVE-2007-6688HIGH10.0ten sam produkt

Unspecified vulnerability in the Installation application in Menalto Gallery before 2.2.4 has unknown impact a...

CVE-2012-4343 — HIGH 7.5 | CVEbaza.pl