LinPHA <= 1.1 Multiple Vulnerabilities
Medium Nessus Network Monitor Plugin ID 3426
SynopsisThe remote host is vulnerable to multiple attack vectors.
DescriptionThe remote host is running LinPHA, a web photo gallery application written in PHP. The installed version of LinPHA suffers from a number of flaws, several of which may allow an unauthenticated attacker to view arbitrary files or to execute arbitrary PHP code on the remote host subject to the privileges of the web server user ID. Note that successful exploitation requires that PHP's 'magic_quotes_gpc' setting be disabled, that an attacker has the ability to create, upload or edit files on the remote host, or that the application's 'user login events log' setting be enabled. The host is also vulnerable to a cross-site scripting (XSS) and SQL injection attacks. Attackers exploiting the XSS flaw would be able to potentially execute malicious code within a user's browser. A successful SQL Injection attack would give the attacker the ability to execute arbitrary commands on the backend database server.
SolutionUpgrade or patch according to vendor recommendations.