• info
• discussion
• exploit
• solution
• references

My_EGallery Module Remote Include Command Injection Vulnerability

Solution:
The vendor has released a new version of the software to address this issue.


lottasophie My_eGallery 3.1.1

• lottasophie My_eGallery 3.1.1.g
  http://lottasophie.sourceforge.net/modules.php?op=modload&name=Downloa ds&file=index&req=getit&lid=22

lottasophie My_eGallery 3.1.1 f

• lottasophie My_eGallery 3.1.1.g
  http://lottasophie.sourceforge.net/modules.php?op=modload&name=Downloa ds&file=index&req=getit&lid=22