NuytsTech Security

CVE-2002-1412

by ·

Gallery photo album package before 1.3.1 allows local and possibly remote attackers to execute arbitrary code via a modified GALLERY_BASEDIR variable that points to a directory or URL that contains a Trojan horse init.php script.

Date published : 2004-09-01

http://www.securityfocus.com/bid/5375

http://archives.neohapsis.com/archives/bugtraq/2002-07/0471.html

Tags: