Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:12665
HistoryMay 14, 2006 - 12:00 a.m.

Gphotos Directory Traversal and Cross Site Scripting

2006-05-1400:00:00
vulners.com
7
JSON

Details

The first vulnerability issue is due to an input validation error in "index.php" "diapo.php"
and "affich.php" scripts that do not validate "rep","image" variables, which may be exploited
to cross site scripting attacks.

http://traget/index.php?rep=[xss]

http://traget/diapo.php?rep=[xss]

http://traget/affich.php?image=[xss]

The second flaw is due to an input validation error in the "index.php" script that fails to
properly validate "rep" variable, which may be exploited to disclose the contents of
arbitrary folders.

http://traget/index.php?rep=../../../

Vulnerable versions

GPhotos 1.5 and prior

Credits
Moroccan Security
Contact
[ Psych0 ] <doz(at)bsdmail(dot)com>

JSON