Vulnerability Description
Multiple directory traversal vulnerabilities in singapore Image Gallery Web Application 0.9.10 allow remote attackers to (1) read arbitrary files via the showThumb method for thumb.php, or (2) delete arbitrary files via admin.class.php.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Singapore | Image Gallery Web Application | 0.9.10 |
References
- http://marc.info/?l=bugtraq&m=110323479715051&w=2
- http://www.security.org.sg/vuln/singapore0910.html
- http://www.securityfocus.com/bid/11990Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18528
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18532
- http://marc.info/?l=bugtraq&m=110323479715051&w=2
- http://www.security.org.sg/vuln/singapore0910.html
- http://www.securityfocus.com/bid/11990Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18528
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18532
FAQ
What is CVE-2004-1407?
CVE-2004-1407 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Multiple directory traversal vulnerabilities in singapore Image Gallery Web Application 0.9.10 allow remote attackers to (1) read arbitrary files via the showThumb method for thumb.php, or (2) delete ...
How severe is CVE-2004-1407?
CVE-2004-1407 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-1407?
Check the references section above for vendor advisories and patch information. Affected products include: Singapore Image Gallery Web Application.