CVE-2007-6691

high

Description

Multiple unspecified vulnerabilities in Menalto Gallery before 2.2.4 have unknown impact, related to (1) "hotlink protection" in the URL rewrite module, (2) a WebDAV view in the WebDAV module, (3) a comment view in the Comment module, (4) unspecified "item information disclosure attacks" in the Core module Gallery application, (5) the slideshow in the Slideshow module, and (6) multiple Print modules.

References

http://security.gentoo.org/glsa/glsa-200802-04.xml

http://secunia.com/advisories/28898

http://osvdb.org/41667

http://osvdb.org/41666

http://osvdb.org/41665

http://osvdb.org/41664

http://osvdb.org/41663

http://osvdb.org/41662

http://gallery.menalto.com/gallery_2.2.4_released

http://bugs.gentoo.org/show_bug.cgi?id=203217

Details

Source: Mitre, NVD

Published: 2008-01-17

Updated: 2008-11-15

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High