Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6790


Vulnerability Score 5.1 5.1
CVE Id CVE-2008-6790
Last Modified 05 May 2009 12:00:00
Published 04 May 2009 03:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE



The admin module in MindDezign Photo Gallery 2.2 allows remote attackers to add administrative users and gain privileges via a modified username parameter in an edit account action to index.php.

Vulnerable Systems


  • Minddezign Photo Gallery 2.2


XF - photogallery-admin-privilege-escalation(46078)

BID - 31897

MILW0RM - 6820

Last Updated: 27 May 2016 10:49:20