Vulnerabilities > CVE-2012-5347 - Remote Command Execution vulnerability in Tinywebgallery 1.8.3
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
TinyWebGallery 1.8.3 allows remote attackers to execute arbitrary code via shell metacharacters in the command parameter to (1) inc/filefunctions.inc or (2) info.php.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | TinyWebGallery 1.8.3 - Remote Command Execution. CVE-2012-5347. Webapps exploit for php platform |
file | exploits/php/webapps/18322.txt |
id | EDB-ID:18322 |
last seen | 2016-02-02 |
modified | 2012-01-06 |
platform | php |
port | |
published | 2012-01-06 |
reporter | Expl0!Ts |
source | https://www.exploit-db.com/download/18322/ |
title | TinyWebGallery 1.8.3 - Remote Command Execution |
type | webapps |