CVE-2007-4650

Name of the Vulnerable Software and Affected Versions: Gallery versions prior to 2.2.3

Description: The issue involves multiple unspecified vulnerabilities that allow attackers to perform various malicious actions, including renaming items, reading and modifying item properties, locking and replacing items, and editing unspecified data files. These actions can be performed via unknown vectors in the WebDAV module and the Reupload modules, with the latter also involving the use of "linked items".

Recommendations: For Gallery versions prior to 2.2.3, update to version 2.2.3 or later to resolve the issue. As a temporary workaround, consider disabling the WebDAV module and restricting access to the Reupload modules until a patch is applied. Avoid using the "linked items" feature in the WebDAV module until the issue is resolved.