Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
lib/flowplayer.swf.php in Gallery 3 before 3.0.9 does not properly remove query fragments, which allows remote attackers to have an unspecified impact via a replay attack, a different vulnerability than CVE-2013-2138.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Gallery ‘flowplayer.swf.php’安全绕过漏洞
Vulnerability Description
Gallery是美国软件开发者Bharat Mediratta所研发的一款基于Web的开源相册管理器。该管理器支持对相片自动生成缩略图、改变大小、排序等。 Gallery 3.0.9之前的3版本中lib/flowplayer.swf.php文件中存在安全漏洞,该漏洞源于程序没有正确删除查询段。远程攻击者可利用该漏洞实施重放攻击。
CVSS Information
N/A
Vulnerability Type
N/A