- Description
- Ralf Image Gallery (RIG) 0.7.4 and other versions before 1.0, when register_globals is enabled, allows remote attackers to conduct PHP remote file inclusion and directory traversal attacks via URLs or ".." sequences in the (1) dir_abs_src parameter in (a) check_entry.php, (b) admin_album.php, (c) admin_image.php, and (d) admin_util.php; and the (2) dir_abs_admin_src parameter in admin_album.php and admin_image.php. NOTE: this issue can be leveraged to conduct cross-site scripting (XSS) attacks.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 5.1
- Impact score
- 6.4
- Exploitability score
- 4.9
- Vector string
- AV:N/AC:H/Au:N/C:P/I:P/A:P
- nvd@nist.gov
- CWE-94
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:le_ralf:ralf_image_gallery:0.6.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ABF6CEFE-5EFF-4A0D-81D6-8AD212773DF8"
},
{
"criteria": "cpe:2.3:a:le_ralf:ralf_image_gallery:0.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "05ADCB86-49A4-430D-A96D-48C346CE069A"
},
{
"criteria": "cpe:2.3:a:le_ralf:ralf_image_gallery:0.7.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "61BCBD3F-3FEB-4CFB-AB76-78807B8FE953"
},
{
"criteria": "cpe:2.3:a:le_ralf:ralf_image_gallery:0.7.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D455402A-B997-4EF6-A0F2-6076A3F42243"
},
{
"criteria": "cpe:2.3:a:le_ralf:ralf_image_gallery:0.7.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "59C9BE86-ADA0-458D-B424-BA1AC0BFED2D"
},
{
"criteria": "cpe:2.3:a:le_ralf:ralf_image_gallery:0.7.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7C125227-4304-4851-B15B-600F05CAB5E6"
},
{
"criteria": "cpe:2.3:a:le_ralf:ralf_image_gallery:0.7.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B8D7F664-0AF6-4B72-8A3D-279191CB9C16"
}
],
"operator": "OR"
}
]
}
]