Dynamic Galerie index.php or galerie.php path disclosure
| dynamicgalerie-multiple-path-disclosure (26322) |  Low Risk |
Description:
Dynamic Galerie could allow a remote attacker to obtain sensitive information. A remote attacker could send specially-crafted requests to the index.php or galerie.php script using the 'pfad' parameter to cause the system to disclose the installation path for Dynamic Galerie. An attacker could use this information to launch other, more specific attacks on the system.
Platforms Affected:
- Timo Braun, Dynamic Galerie 1.0
Remedy:
No remedy available as of July 4, 2009.
Consequences:
Obtain Information
References:
- D4IGORO's Blogger, Dynamic Galerie 1.0 - path traversal + XSS Vulnerability at http://d4igoro.blogspot.com/2006/05/dynamic-galerie-10-path-traversal-xss.html.
- Timo Braun's Homepage Web site, Skripte - Dynamic Galerie 1.0 at http://www.timobraun.de/.
- BID-17896: Timobraun Dynamic Galerie Multiple Input Validation Vulnerabilities
- CVE-2006-2295: Directory traversal vulnerability in Dynamic Galerie 1.0 allows remote attackers to access arbitrary files via an absolute path in the pfad parameter to (1) index.php and (2) galerie.php.
- SA19995: Dynamic Galerie "pfad" Cross-Site Scripting and Information Disclosure
- VUPEN/ADV-2006-1699: Dynamic Galerie Cross Site Scripting and Information Disclosure Vulnerability
Reported:
May 05, 2006
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net