Unrated severityNVD Advisory· Published Nov 2, 2005· Updated Apr 16, 2026

CVE-2005-3432

Description

MiniGal 2 (MG2) 0.5.1 allows remote attackers to list password protected images via a request to index.php with the list parameter set to * (wildcard) and the page parameter set to all.

Affected products

Minigal/Minigal 22 versions
cpe:2.3:a:thomas_rybak:minigal_2:0.5.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:thomas_rybak:minigal_2:0.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:thomas_rybak:minigal_2:b13:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/17374/nvdExploitVendor Advisory
www.securityfocus.com/bid/15235nvdExploit
marc.infonvd
securityreason.com/securityalert/128nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000