CVE-2004-1407

Description

Multiple directory traversal vulnerabilities in singapore Image Gallery Web Application 0.9.10 allow remote attackers to (1) read arbitrary files via the showThumb method for thumb.php, or (2) delete arbitrary files via admin.class.php.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/18532

https://exchange.xforce.ibmcloud.com/vulnerabilities/18528

http://www.securityfocus.com/bid/11990

http://www.security.org.sg/vuln/singapore0910.html

http://marc.info/?l=bugtraq&m=110323479715051&w=2

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3