Vulnerabilities > CVE-2004-1407 - Unspecified vulnerability in Singapore Image Gallery web Application 0.9.10
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN singapore
nessus
Summary
Multiple directory traversal vulnerabilities in singapore Image Gallery Web Application 0.9.10 allow remote attackers to (1) read arbitrary files via the showThumb method for thumb.php, or (2) delete arbitrary files via admin.class.php.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Nessus
| NASL family | CGI abuses |
| NASL id | SINGAPORE_FLAWS.NASL |
| description | Singapore is a PHP based photo gallery web application. The remote version of this software is affected by multiple vulnerabilities that may allow an attacker to read arbitrary files on the remote host or to execute arbitrary PHP commands. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 15987 |
| published | 2004-12-16 |
| reporter | This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/15987 |
| title | Singapore Gallery < 0.9.11 Multiple Vulnerabilities |
References
- http://marc.info/?l=bugtraq&m=110323479715051&w=2
- http://marc.info/?l=bugtraq&m=110323479715051&w=2
- http://www.security.org.sg/vuln/singapore0910.html
- http://www.security.org.sg/vuln/singapore0910.html
- http://www.securityfocus.com/bid/11990
- http://www.securityfocus.com/bid/11990
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18528
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18528
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18532
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18532