- Description
- Multiple directory traversal vulnerabilities in EZOnlineGallery 1.3 and earlier, and possibly other versions before 1.3.2 Beta, allow remote attackers to (1) determine directory existence via a ".." in the album parameter in a show_album action to (a) ezgallery.php, which produces different responses depending on existence; and read arbitrary image files via a ".." in the album or (2) image parameter to (b) image.php.
- Source
- cve@mitre.org
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 6.4
- Impact score
- 4.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:P/A:N
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ezonlinegallery:ezonlinegallery:0.9:beta:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "09F29E74-B330-4006-A525-16DC7CF10C38"
},
{
"criteria": "cpe:2.3:a:ezonlinegallery:ezonlinegallery:1.0:beta:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "81DB3DAA-0206-4A6B-AA4F-F03474CE7E32"
},
{
"criteria": "cpe:2.3:a:ezonlinegallery:ezonlinegallery:1.1:beta:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "59A5DDFE-A6BF-4E17-BF6D-469CFD02215A"
},
{
"criteria": "cpe:2.3:a:ezonlinegallery:ezonlinegallery:1.2:beta:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6037CE73-67C7-4007-A162-C7A0CEC5C294"
},
{
"criteria": "cpe:2.3:a:ezonlinegallery:ezonlinegallery:1.3:beta:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2F024270-0441-4751-8BCA-A6376E3BB16E"
}
],
"operator": "OR"
}
]
}
]