Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The set_time_limit function in Gallery before 1.4.4_p2 deletes non-image files in a temporary directory every 30 seconds after they have been uploaded using save_photos.php, which allows remote attackers to upload and execute execute arbitrary scripts before they are deleted, if the temporary directory is under the web root.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Gallery save_photos.php上传执行任意文件漏洞
Vulnerability Description
Gallery是一款基于WEB的图象管理系统。 Gallery包含的'save_photos.php'存在输入验证问题,远程攻击者可以利用这个漏洞以WEB进程权限在系统上执行任意命令。 aCiDBiTS报告如果临时目录是WEB可访问目录,拥有上传权限的远程验证用户就可以使用 'URL method'方法建立任意PHP文件,然后通过WEB执行。 报告认为文件在下载后,临时目录中的拷贝会保留30秒左右。
CVSS Information
N/A
Vulnerability Type
N/A