Vulnerability Details CVE-2005-4250
Directory traversal vulnerability in mcGallery PRO 2.2 and earlier allows remote attackers to read arbitrary files via the language parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.039
EPSS Ranking 87.8%
CVSS Severity
CVSS v2 Score 5.0
References
- http://pridels0.blogspot.com/2005/12/mcgallery-pro-vuln.html
- http://secunia.com/advisories/18039
- http://www.osvdb.org/21718
- http://www.vupen.com/english/advisories/2005/2886
- http://pridels0.blogspot.com/2005/12/mcgallery-pro-vuln.html
- http://secunia.com/advisories/18039
- http://www.osvdb.org/21718
- http://www.vupen.com/english/advisories/2005/2886
Products affected by CVE-2005-4250
-
cpe:2.3:a:mcgallery:mcgallery_pro:1.0
-
cpe:2.3:a:mcgallery:mcgallery_pro:1.1
-
cpe:2.3:a:mcgallery:mcgallery_pro:2.2