Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4610


Vulnerability Score 6.8 6.8
CVE Id CVE-2007-4610
Last Modified 05 Sep 2008 05:28:40
Published 30 Aug 2007 08:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



Unrestricted file upload vulnerability in config/upload.php in Moonware (aka Dale Mooney Gallery) allows remote attackers to upload and execute arbitrary PHP files in images/, possibly related to config/admin.php.

Vulnerable Systems


  • Dale Mooney Moon Gallery


XF - moongallery-admin-file-upload(36288)

BID - 25455

BUGTRAQ - 20070826 Moonware Software Multiple Vulnerabilities

SECUNIA - 26633

SREASON - 3079

Last Updated: 27 May 2016 10:45:54