Detections
Analytics
LinPHA <= 1.0 Multiple Vulnerabilities
medium Nessus Plugin ID 20892
Language:
Synopsis
The remote web server contains a PHP application that is affected by multiple flaws.Description
The remote host is running LinPHA, a web photo gallery application written in PHP.The installed version of LinPHA suffers from a number of flaws, several of which could allow an unauthenticated attacker to view arbitrary files or to execute arbitrary PHP code on the remote host, subject to the privileges of the web server user id.
Note that successful exploitation requires that PHP's 'magic_quotes_gpc' setting be disabled, that an attacker has the ability to create / upload / edit files on the remote host, or that the application's 'user login events log' setting be enabled.
Solution
Unknown at this time.See Also
https://seclists.org/bugtraq/2006/Feb/169
https://www.securityfocus.com/archive/1/424729/30/0/threaded
Plugin Details
Severity: Medium
ID: 20892
File Name: linpha_10.nasl
Version: 1.20
Type: remote
Family: CGI abuses
Published: 2/13/2006
Updated: 4/11/2022
Configuration: Enable thorough checks
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 4.2
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 4.8
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N
Vulnerability Information
Required KB Items: www/PHP
Excluded KB Items: Settings/disable_cgi_scanning
Exploit Available: true
Exploit Ease: Exploits are available
Exploited by Nessus: true
Reference Information
CVE: CVE-2006-0713
BID: 16592