Crux Software Gallery vulnerabilities
2 known vulnerabilities affecting crux_software/gallery.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2008-4484P3MEDIUMCVSS 6.8PoC≤ 1.32v1.0+5 more2008-10-08
CVE-2008-4484 [MEDIUM] CWE-264 CVE-2008-4484: main.php in Crux Gallery 1.32 and earlier allows remote attackers to gain administrative access by s
main.php in Crux Gallery 1.32 and earlier allows remote attackers to gain administrative access by setting the name parameter to "users," as demonstrated via index.php.
nvd
CVE-2008-4483P3MEDIUMCVSS 6.8PoC≤ 1.32v1.0+5 more2008-10-08
CVE-2008-4483 [MEDIUM] CWE-22 CVE-2008-4483: Directory traversal vulnerability in index.php in Crux Gallery 1.32 and earlier, when magic_quotes_g
Directory traversal vulnerability in index.php in Crux Gallery 1.32 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the theme parameter.
nvd