PhpWebGallery 'comments.php' SQL Injection and Code Execution Vulnerabilities

PhpWebGallery 'comments.php' SQL Injection and Code Execution Vulnerabilities

Solution:
The vendor released PhpWebGallery 1.7.3 to address these issues. Please see the references for more information.

PhpWebGallery PhpWebGallery 1.0

PhpWebGallery phpwebgallery-1.7.3.tar.gz
http://download.gna.org/phpwebgallery/release/1.7/1.7.3/phpwebgallery- 1.7.3.tar.gz

PhpWebGallery PhpWebGallery 1.1

PhpWebGallery phpwebgallery-1.7.3.tar.gz
http://download.gna.org/phpwebgallery/release/1.7/1.7.3/phpwebgallery- 1.7.3.tar.gz

PhpWebGallery PhpWebGallery 1.3.4

PhpWebGallery phpwebgallery-1.7.3.tar.gz
http://download.gna.org/phpwebgallery/release/1.7/1.7.3/phpwebgallery- 1.7.3.tar.gz

PhpWebGallery PhpWebGallery 1.4.1

PhpWebGallery phpwebgallery-1.7.3.tar.gz
http://download.gna.org/phpwebgallery/release/1.7/1.7.3/phpwebgallery- 1.7.3.tar.gz

PhpWebGallery PhpWebGallery 1.5.1

PhpWebGallery phpwebgallery-1.7.3.tar.gz
http://download.gna.org/phpwebgallery/release/1.7/1.7.3/phpwebgallery- 1.7.3.tar.gz

PhpWebGallery PhpWebGallery 1.5.2

PhpWebGallery phpwebgallery-1.7.3.tar.gz
http://download.gna.org/phpwebgallery/release/1.7/1.7.3/phpwebgallery- 1.7.3.tar.gz

PhpWebGallery PhpWebGallery 1.7

PhpWebGallery phpwebgallery-1.7.3.tar.gz
http://download.gna.org/phpwebgallery/release/1.7/1.7.3/phpwebgallery- 1.7.3.tar.gz

PhpWebGallery PhpWebGallery 1.7.1

PhpWebGallery phpwebgallery-1.7.3.tar.gz
http://download.gna.org/phpwebgallery/release/1.7/1.7.3/phpwebgallery- 1.7.3.tar.gz

PhpWebGallery PhpWebGallery 1.7.2

PhpWebGallery phpwebgallery-1.7.3.tar.gz
http://download.gna.org/phpwebgallery/release/1.7/1.7.3/phpwebgallery- 1.7.3.tar.gz