Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4800

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2005-4800
Last Modified 05 Sep 2008 04:57:52
Published 31 Dec 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2005-4800

Summary

Direct static code injection vulnerability in Yet Another PHP Image Gallery (YaPIG) 0.95b and earlier allows remote authenticated administrators to inject arbitrary PHP code via the TestGallery parameter in a mod_info action to modify_gallery.php, which inserts the code into guid_info.php. NOTE: this issue is easier to exploit due to a separate CSRF vulnerability.

Vulnerable Systems

Application

  • Yapig 0.92b

  • Yapig 0.93u

  • Yapig 0.94u

  • Yapig 0.95

  • Yapig 0.95b


References

XF - yapig-http-post-privilege-escalation(22753)

MISC - http://www.seclab.tuwien.ac.at/advisories/TUVSA-0510-001.txt

OSVDB - 19960

SECUNIA - 17041

BUGTRAQ - 20051013 Yapig: XSS / Code Injection Vulnerability


Last Updated: 27 May 2016 10:41:26