Total
3 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2007-1478 | 1 Mcgallery | 1 Mcgallery | 2017-10-10 | 5.0 MEDIUM | N/A |
| download.php in McGallery 0.5b allows remote attackers to read arbitrary files and obtain script source code via the filename parameter. | |||||
| CVE-2005-1997 | 1 Mcgallery | 1 Mcgallery | 2016-10-17 | 5.0 MEDIUM | N/A |
| show.php in McGallery 1.1 allows remote attackers to connect to arbitrary databases, or gain sensitive information by triggering an error, via a modified host parameter. | |||||
| CVE-2005-1998 | 1 Mcgallery | 1 Mcgallery | 2016-10-17 | 5.0 MEDIUM | N/A |
| Directory traversal vulnerability in admin.php in McGallery 1.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the lang parameter. | |||||