This script is Copyright (C) 2013-2016 Tenable Network Security, Inc.
The remote Fedora host is missing a security update.
A security flaw was found in the way uploadify and flowplayer SWF
files handling functionality of Gallery version 3, an open source
project with the goal to develop and support leading photo sharing web
application solutions, processed certain URL fragments passed to these
files (certain URL fragments were not stripped properly when these
files were called via direct URL request(s)). A remote attacker could
use this flaw to conduct replay attacks.
Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.
See also :
Update the affected gallery3 package.
Risk factor :
Medium / CVSS Base Score : 5.8
CVSS Temporal Score : 5.0
Public Exploit Available : true