QwikSec

Security Database

CVE

CWE

Training

CVE-2004-1466

Published: Feb 13, 2005

Modified: Aug 8, 2024

PUBLISHED

Description

The set_time_limit function in Gallery before 1.4.4_p2 deletes non-image files in a temporary directory every 30 seconds after they have been uploaded using save_photos.php, which allows remote attackers to upload and execute execute arbitrary scripts before they are deleted, if the temporary directory is under the web root.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_BID

gallery-savephotos-file-upload(17021)

vdb-entry

x_refsource_XF

20040817 Gallery 1.4.4 save_photos.php PHP Insertion Proof of Concept

mailing-list

x_refsource_FULLDISC

vendor-advisory

x_refsource_GENTOO

http://gallery.menalto.com/modules.php?op=modload&name=News&file=article&sid=134&mode=thread&order=0&thold=0

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.