Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2041


Vulnerability Score 5.0 5.0
CVE Id CVE-2006-2041
Last Modified 07 Mar 2011 09:34:51
Published 26 Apr 2006 02:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



PhpWebGallery before 1.6.0RC1 allows remote attackers to obtain arbitrary pictures via a request to picture.php without specifying the cat parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information.

Vulnerable Systems


  • Phpwebgallery 1.0

  • Phpwebgallery 1.4.1

  • Phpwebgallery 1.5.1


SECUNIA - 19801

VUPEN - ADV-2006-1515

XF - phpwebgallery-picture-bypass-security(26079)

Last Updated: 27 May 2016 10:42:18