PT-2006-6755 · Mmgallery · Mmgallery

Al7Ejaz Hackerz

Published

2006-11-26

Updated

2018-10-17

CVE-2006-6119

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions mmgallery version 1.55

Description The issue allows remote attackers to obtain sensitive information via a direct request for "thumbs.php", which reveals the installation path in various error messages.

Recommendations For mmgallery version 1.55, consider restricting access to the "thumbs.php" file until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-6119

Affected Products

Mmgallery

PT-2006-6755 · Mmgallery · Mmgallery

CVE-2006-6119

Related Identifiers

Affected Products

References · 5