Thickbox Gallery
by Davlin
CVEs (2)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2009-1625 | 0.03 | — | 0.04 | May 12, 2009 | Directory traversal vulnerability in index.php in Thickbox Gallery 2 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the ln parameter. | ||
| CVE-2008-3859 | 0.03 | — | 0.05 | Aug 29, 2008 | Davlin Thickbox Gallery 2 allows remote attackers to obtain the administrative username and MD5 password hash via a direct request to conf/admins.php. |
- CVE-2009-1625May 12, 2009risk 0.03cvss —epss 0.04
Directory traversal vulnerability in index.php in Thickbox Gallery 2 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the ln parameter.
- CVE-2008-3859Aug 29, 2008risk 0.03cvss —epss 0.05
Davlin Thickbox Gallery 2 allows remote attackers to obtain the administrative username and MD5 password hash via a direct request to conf/admins.php.