Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

LinPHA <= 1.1 Multiple Vulnerabilities

Medium

Synopsis

The remote host is vulnerable to multiple attack vectors.

Description

The remote host is running LinPHA, a web photo gallery application written in PHP. The installed version of LinPHA suffers from a number of flaws, several of which may allow an unauthenticated attacker to view arbitrary files or to execute arbitrary PHP code on the remote host subject to the privileges of the web server user ID. Note that successful exploitation requires that PHP's 'magic_quotes_gpc' setting be disabled, that an attacker has the ability to create, upload or edit files on the remote host, or that the application's 'user login events log' setting be enabled. The host is also vulnerable to a cross-site scripting (XSS) and SQL injection attacks. Attackers exploiting the XSS flaw would be able to potentially execute malicious code within a user's browser. A successful SQL Injection attack would give the attacker the ability to execute arbitrary commands on the backend database server.

Solution

Upgrade or patch according to vendor recommendations.