Vulnerabilities > CVE-2005-1998 - Unspecified vulnerability in Mcgallery 1.1

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
mcgallery
exploit available

Summary

Directory traversal vulnerability in admin.php in McGallery 1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the lang parameter.

Vulnerable Configurations

Part Description Count
Application
Mcgallery
1

Exploit-Db

descriptionMcGallery 1.0/1.1 Lang Argument File Disclosure Vulnerability. CVE-2005-1998. Webapps exploit for php platform
idEDB-ID:25823
last seen2016-02-03
modified2005-06-15
published2005-06-15
reporterD_BuG
sourcehttps://www.exploit-db.com/download/25823/
titleMcGallery 1.0/1.1 Lang Argument File Disclosure Vulnerability