Arbitrary Code Execution via PHP Remote File Inclusion in PhotoGal Photo Gallery 1.5 and Earlier

Arbitrary Code Execution via PHP Remote File Inclusion in PhotoGal Photo Gallery 1.5 and Earlier

CVE-2005-2216 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

PHP remote file inclusion vulnerability in gals.php in PhotoGal Photo Gallery 1.5 and earlier allows remote attackers to execute arbitrary code via the news_file parameter.

Learn more about our Web Application Penetration Testing UK.