garfield/wpscan
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Adds the NextGen Arbitrary File Upload vuln

Browse Source
This commit is contained in:
erwanlr
2014-07-06 22:16:49 +02:00
parent 0469128917
commit e7c9c884e9
1 changed files with 9 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
data/plugin_vulns.xml
View File

@@ -4452,6 +4452,15 @@
</plugin> </plugin>
<plugin name="nextgen-gallery"> <plugin name="nextgen-gallery">
<vulnerability>
<title>NextGEN Gallery &amp; 2.0.66 - Arbitrary File Upload (the user must have upload privileges)</title>
<references>
<url>http://packetstormsecurity.com/files/127340/wpnextgen2063-shell.txt</url>
</references>
<type>UPLOAD</type>
<!-- The 2.0.65 has a bypass, properly fixed in 2.0.66 -->
<fixed_in>2.0.66</fixed_in>
</vulnerability>
<vulnerability> <vulnerability>
<title>NextGEN Gallery 2.0.0 - Directory Traversal</title> <title>NextGEN Gallery 2.0.0 - Directory Traversal</title>
<references> <references>