CVE-2006-3210
published 2006-06-24CVE-2006-3210: Ralf Image Gallery (RIG) 0.7.4 and other versions before 1.0, when register_globals is enabled, allows remote attackers to conduct PHP remote file inclusion…
PriorityP433medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EXPLOIT
EPSS
13.30%
95.9th percentile
Ralf Image Gallery (RIG) 0.7.4 and other versions before 1.0, when register_globals is enabled, allows remote attackers to conduct PHP remote file inclusion and directory traversal attacks via URLs or ".." sequences in the (1) dir_abs_src parameter in (a) check_entry.php, (b) admin_album.php, (c) admin_image.php, and (d) admin_util.php; and the (2) dir_abs_admin_src parameter in admin_album.php and admin_image.php. NOTE: this issue can be leveraged to conduct cross-site scripting (XSS) attacks.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| le_ralf | ralf_image_gallery | — | — |
| le_ralf | ralf_image_gallery | — | — |
| le_ralf | ralf_image_gallery | — | — |
| le_ralf | ralf_image_gallery | — | — |
| le_ralf | ralf_image_gallery | — | — |
| le_ralf | ralf_image_gallery | — | — |
| le_ralf | ralf_image_gallery | — | — |
| le_ralf | ralf_image_gallery | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-p92f-jqv5-rc4p: ** DISPUTED ** PHP remote file inclusion vulnerability in check_entry
ghsa_unreviewed·2022-05-01·CVSS 5.1
CVE-2007-4127 [MEDIUM] GHSA-p92f-jqv5-rc4p: ** DISPUTED ** PHP remote file inclusion vulnerability in check_entry
** DISPUTED ** PHP remote file inclusion vulnerability in check_entry.php in Ralf Image Gallery (RIG), aka Raphael Moll RIG Image Gallery, 1.0 allows remote attackers to execute arbitrary PHP code via a URL in the dir_abs_src parameter. NOTE: this issue is disputed by multiple third parties, who report that the product exits if register_globals is enabled, thereby blocking exploitation. NOTE: CVE-2006-3210.a covers this issue in versions before 1.0.
GHSA
GHSA-4ff4-29xf-f5hg: Ralf Image Gallery (RIG) 0
ghsa_unreviewed·2022-05-01
CVE-2006-3210 [MEDIUM] CWE-94 GHSA-4ff4-29xf-f5hg: Ralf Image Gallery (RIG) 0
Ralf Image Gallery (RIG) 0.7.4 and other versions before 1.0, when register_globals is enabled, allows remote attackers to conduct PHP remote file inclusion and directory traversal attacks via URLs or ".." sequences in the (1) dir_abs_src parameter in (a) check_entry.php, (b) admin_album.php, (c) admin_image.php, and (d) admin_util.php; and the (2) dir_abs_admin_src parameter in admin_album.php and admin_image.php. NOTE: this issue can be leveraged to conduct cross-site scripting (XSS) attacks.
No detection rules found.
No writeups or analysis indexed.
http://rig.powerpulsar.com/#newshttp://secunia.com/advisories/20771http://securityreason.com/securityalert/1136http://www.majorsecurity.de/advisory/major_rls18.txthttp://www.osvdb.org/26753http://www.osvdb.org/26754http://www.osvdb.org/26755http://www.osvdb.org/26756http://www.securityfocus.com/archive/1/437818/100/0/threadedhttp://www.securityfocus.com/archive/1/438645/100/100/threadedhttp://www.securityfocus.com/bid/18548http://www.vupen.com/english/advisories/2006/2477https://exchange.xforce.ibmcloud.com/vulnerabilities/27256https://exchange.xforce.ibmcloud.com/vulnerabilities/27257https://exchange.xforce.ibmcloud.com/vulnerabilities/27259http://rig.powerpulsar.com/#newshttp://secunia.com/advisories/20771http://securityreason.com/securityalert/1136http://www.majorsecurity.de/advisory/major_rls18.txthttp://www.osvdb.org/26753http://www.osvdb.org/26754http://www.osvdb.org/26755http://www.osvdb.org/26756http://www.securityfocus.com/archive/1/437818/100/0/threadedhttp://www.securityfocus.com/archive/1/438645/100/100/threadedhttp://www.securityfocus.com/bid/18548http://www.vupen.com/english/advisories/2006/2477https://exchange.xforce.ibmcloud.com/vulnerabilities/27256https://exchange.xforce.ibmcloud.com/vulnerabilities/27257https://exchange.xforce.ibmcloud.com/vulnerabilities/27259
2006-06-24
Published