CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-2334

Directory traversal vulnerability in themes/default/download.php in Yamamah Photo Gallery 1.00, as distributed before 20100618, allows remote attackers to read arbitrary files via a .. (dot dot) in the download parameter.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.024

EPSS Ranking 84.4%

CVSS Severity

CVSS v2 Score 5.0

References

http://osvdb.org/65479
http://secunia.com/advisories/40150
http://www.exploit-db.com/exploits/13856
http://www.yamamah.org/home/?page=39
http://osvdb.org/65479
http://secunia.com/advisories/40150
http://www.exploit-db.com/exploits/13856
http://www.yamamah.org/home/?page=39

Products affected by CVE-2010-2334

Yamamah » Yamamah » Version: 1.00

cpe:2.3:a:yamamah:yamamah:1.00

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-2334

Products

Pricing

Contact Us