FreeBSD : gallery2 -- multiple vulnerabilities (9b718b82-8ef5-11dc-8e42-001c2514716c)
Medium Nessus Plugin ID 28166
SynopsisThe remote FreeBSD host is missing a security-related update.
DescriptionGallery project reports :
Gallery 2.2.3 addresses the following security vulnerabilities :
- Unauthorized renaming of items possible with WebDAV (reported by Merrick Manalastas)
- Unauthorized modification and retrieval of item properties possible with WebDAV
- Unauthorized locking and replacing of items possible with WebDAV
- Unauthorized editing of data file possible via linked items with Reupload and WebDAV (reported by Nicklous Roberts)
SolutionUpdate the affected package.