PlanetGallery - 'Gallery_admin.php' Authentication Bypass
| EKU-ID: 33048 | CVE: CVE-2006-2116;OSVDB-25603 | OSVDB-ID: |
| Author: tugr@ | Published: 2006-04-29 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 33048 | CVE: CVE-2006-2116;OSVDB-25603 | OSVDB-ID: |
| Author: tugr@ | Published: 2006-04-29 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/17753/info PlanetGallery is prone to an authentication-bypass vulnerability. The issue occurs because the affected script fails to prompt for authentication credentials. An attacker can exploit this issue to bypass authentication and gain admin access. This could aid in further attacks on the affected computer. http://www.example.com/planetgallery/admin/gallery_admin.php