Singapore: >> Image Gallery Web Application >> 0.9.10 Security Vulnerabilities
Multiple directory traversal vulnerabilities in singapore Image Gallery Web Application 0.9.10 allow remote attackers to (1) read arbitrary files via the showThumb method for thumb.php, or (2) delete arbitrary files via admin.class.php.
CVSS Score
5.0
EPSS Score
0.005
Published
2004-12-31
The addImage method for admin.class.php in Image Gallery Web Application 0.9.10 does not properly check filenames, which allows remote attackers to upload and execute arbitrary files.
CVSS Score
7.5
EPSS Score
0.008
Published
2004-12-31
Multiple cross-site scripting vulnerabilities in Image Gallery Web Application 0.9.10 allow remote attackers to inject arbitrary web script or HTML.
CVSS Score
5.0
EPSS Score
0.003
Published
2004-12-31