CVE-2007-4650

Published Sep 4, 2007

Last updated 14 years ago

Overview

Description: Multiple unspecified vulnerabilities in Gallery before 2.2.3 allow attackers to (1) rename items, (2) read and modify item properties, or (3) lock and replace items via unknown vectors in (a) the WebDAV module; and (4) edit unspecified data files using "linked items" in WebDAV and (b) Reupload modules.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.4
Impact score: 4.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:N

Weaknesses

nvd@nist.gov: CWE-264

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:bharat_mediratta:gallery:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "27BE968E-DCFA-4453-B660-E793A7FB4CC7",
            "versionEndIncluding": "2.2.2"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References