CVEs and Security Vulnerabilities CVEs and Security Vulnerabilities

Filtered by vendor Menalto Subscriptions

Total 23 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2008-2722	1 Menalto	1 Gallery	2025-04-09	N/A
Menalto Gallery before 2.2.5 allows remote attackers to bypass permissions for sub-albums via a ZIP archive.
CVE-2007-6686	1 Menalto	1 Gallery	2025-04-09	N/A
The URL rewrite module in Menalto Gallery before 2.2.4 allows attackers to include and execute arbitrary local files via unknown vectors related to the admin controller.
CVE-2007-6689	1 Menalto	1 Gallery	2025-04-09	N/A
Menalto Gallery before 2.2.4 does not properly check for malicious file extensions during file uploads, which allows attackers to execute arbitrary code via the (1) Core application or (2) MIME module.

« first previous Page 2 of 2.