Application: singapore
Affected Version: 0.10.1 and other versions.
Vendor’s URL: http://www.sgal.org/
Bug Type: Cross Site Scripting
Risk Level: Medium
Solution:
Edit the source code to ensure that input is properly sanitized.
Application: ASP Photo Gallery
Affected Version: 1.0.
Vendor’s URL: http://www.matteobinda.com/apg.php
Bug Type: SQL Injection
Risk Level: Critical
Solution:
Edit the source code to ensure that input is properly sanitized.
Application: minimal Gallery
Affected Version: 0.8.
Vendor’s URL: http://minimalgallery.net/home
Bug Type: Exposure of sensitive information
Risk Level: Critical
Solution:
Edit the source code to ensure that input is properly sanitized. Restrict access to php_info.php (e.g. with “.htaccess”).
Application: vBGallery
Affected Version: prior to version 2.4.2.
Vendor’s URL: http://www.photopost.com/
Bug Type: File Inclusion
Risk Level: Critical
Solution:
Update to version 2.4.2.
Application Affected :
Coppermine Photo Gallery 1.4
Coppermine Photo Gallery 1.3.4
Coppermine Photo Gallery 1.3.3
Coppermine Photo Gallery 1.3.2
Coppermine Photo Gallery 1.3.1
Vendor’s URL: CopperMine HomePage
Bug Type: Input Validation
Risk Level: Medium
Solution: The fix will be included in newer version of Coppermine Photo Gallery 1.4.2 .
Applications, File Inclusion, Image Galleries, Vulnerabilities