Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2004-1466
Description:The set_time_limit function in Gallery before 1.4.4_p2 deletes non- image files in a temporary directory every 30 seconds after they have been uploaded using save_photos.php, which allows remote attackers to upload and execute execute arbitrary scripts before they are deleted, if the temporary directory is under the web root.
Test IDs: 1.3.6.1.4.1.25623.1.0.14338  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2004-1466
BugTraq ID: 10968
http://www.securityfocus.com/bid/10968
http://archives.neohapsis.com/archives/fulldisclosure/2004-08/0757.html
http://www.gentoo.org/security/en/glsa/glsa-200409-05.xml
XForce ISS Database: gallery-savephotos-file-upload(17021)
https://exchange.xforce.ibmcloud.com/vulnerabilities/17021




© 1998-2024 E-Soft Inc. All rights reserved.