Vulnerability Details CVE-2007-6691
Multiple unspecified vulnerabilities in Menalto Gallery before 2.2.4 have unknown impact, related to (1) "hotlink protection" in the URL rewrite module, (2) a WebDAV view in the WebDAV module, (3) a comment view in the Comment module, (4) unspecified "item information disclosure attacks" in the Core module Gallery application, (5) the slideshow in the Slideshow module, and (6) multiple Print modules.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 77.5%
CVSS Severity
CVSS v2 Score 10.0
References
- http://bugs.gentoo.org/show_bug.cgi?id=203217
- http://gallery.menalto.com/gallery_2.2.4_released
- http://osvdb.org/41662
- http://osvdb.org/41663
- http://osvdb.org/41664
- http://osvdb.org/41665
- http://osvdb.org/41666
- http://osvdb.org/41667
- http://secunia.com/advisories/28898
- http://security.gentoo.org/glsa/glsa-200802-04.xml
- http://bugs.gentoo.org/show_bug.cgi?id=203217
- http://gallery.menalto.com/gallery_2.2.4_released
- http://osvdb.org/41662
- http://osvdb.org/41663
- http://osvdb.org/41664
- http://osvdb.org/41665
- http://osvdb.org/41666
- http://osvdb.org/41667
- http://secunia.com/advisories/28898
- http://security.gentoo.org/glsa/glsa-200802-04.xml
Products affected by CVE-2007-6691
-
cpe:2.3:a:menalto:gallery:1.5.7
-
cpe:2.3:a:menalto:gallery:1.6
-
cpe:2.3:a:menalto:gallery:2.1
-
cpe:2.3:a:menalto:gallery:2.1.1
-
cpe:2.3:a:menalto:gallery:2.1.2
-
cpe:2.3:a:menalto:gallery:2.2.0
-
cpe:2.3:a:menalto:gallery:2.2.1
-
cpe:2.3:a:menalto:gallery:2.2.2
-
cpe:2.3:a:menalto:gallery:2.2.3