Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4610

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2007-4610
Last Modified 05 Sep 2008 05:28:40
Published 30 Aug 2007 08:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4610

Summary

Unrestricted file upload vulnerability in config/upload.php in Moonware (aka Dale Mooney Gallery) allows remote attackers to upload and execute arbitrary PHP files in images/, possibly related to config/admin.php.

Vulnerable Systems

Application

  • Dale Mooney Moon Gallery


References

XF - moongallery-admin-file-upload(36288)

BID - 25455

BUGTRAQ - 20070826 Moonware Software Multiple Vulnerabilities

SECUNIA - 26633

SREASON - 3079


Last Updated: 27 May 2016 10:45:54