5
CVE-2005-0375
- EPSS 1.55%
- Veröffentlicht 02.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:11:00
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Loginimageview.php in SGallery 1.01 allows remote attackers to obtain sensitive information via an HTTP request with (1) idalbum and (2) idimage unset, which reveals the installation path in an error message for the sql_fetch_row function.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Sergey Kiselev ≫ Sgallery Version1.01
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.55% | 0.718 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://lists.grok.org.uk/pipermail/full-disclosure/2005-January/030844.html
http://marc.info/?l=bugtraq&m=110557050700947&w=2
http://securitytracker.com/id?1012868
http://www.waraxe.us/advisory-39.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/18877