Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
PHP remote file include vulnerability in index.php for Gallery 1.4 and 1.4-pl1, when running on Windows or in Configuration mode on Unix, allows remote attackers to inject arbitrary PHP code via a URL in the GALLERY_BASEDIR parameter, a different vulnerability than CVE-2002-1412. NOTE: this issue might be exploitable only during installation, or if the administrator has not run a security script after installation.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Gallery index.php远程文件列入漏洞
Vulnerability Description
Gallery 1.4和1.4-pl1版本的index.php存在PHP远程文件列入漏洞,当运行在Windows或者Unix上的默认模式时,远程攻击者通过修改GALLERY_BASEDIR参数指向一个恶意的util.php文件从而导致注入任意PHP代码,该漏洞与CVE-2002-1412不同。
CVSS Information
N/A
Vulnerability Type
N/A