CVE-2006-3676 - admin/gallery_admin.php in planetGallery before 14.07.2006 allows remote attackers to execute arbitr

CVE-2006-3676

Summary

admin/gallery_admin.php in planetGallery before 14.07.2006 allows remote attackers to execute arbitrary PHP code by uploading files with a double extension and directly accessing the file in the images directory, which bypasses a regular expression check for safe file types. Successful exploitation requires administrative user privileges. This vulnerability is addressed in the following product release: PlaNet Concept, planetGallery, 14.07.2006

References

Vulnerable Configurations

cpe:2.3:a:planet_concept:planetgallery:*:*:*:*:*:*:*:*
cpe:2.3:a:planet_concept:planetgallery:*:*:*:*:*:*:*:*

CVSS

Base:	5.1 (as of 18-10-2018 - 16:48)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	HIGH	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:H/Au:N/C:P/I:P/A:P

refmap via4

bid	19091
bugtraq	20060720 Advisory: Remote command execution in planetGallery
fulldisc	20060720 Advisory: Remote command execution in planetGallery
misc	http://www.redteam-pentesting.de/advisories/rt-sa-2006-006.txt
osvdb	27417
secunia	21099
sreason	1268
xf	planetgallery-galleryadmin-file-upload(27858)

Last major update

18-10-2018 - 16:48

Published

24-07-2006 - 12:19

Last modified

18-10-2018 - 16:48