Vulnerabilities > CVE-2006-6616 - Remote Authentication Bypass vulnerability in W00T Gallery W00T Gallery 1.4.0

047910
CVSS 6.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
SINGLE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
w00t-gallery

Summary

index.php in w00t Gallery 1.4.0 allows remote authenticated users with privileges for one installation to gain access to other installations on the same web server, aka "multi-gallery admin session spanning." NOTE: some of these details are obtained from third party information.

Vulnerable Configurations

Part Description Count
Application
W00T_Gallery
1