CVE-2007-6691

{"id": "CVE-2007-6691", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": true, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2008-01-17T02:00:00.000", "references": [{"url": "http://bugs.gentoo.org/show_bug.cgi?id=203217", "source": "cve@mitre.org"}, {"url": "http://gallery.menalto.com/gallery_2.2.4_released", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://osvdb.org/41662", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/41663", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/41664", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/41665", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/41666", "source": "cve@mitre.org"}, {"url": "http://osvdb.org/41667", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/28898", "source": "cve@mitre.org"}, {"url": "http://security.gentoo.org/glsa/glsa-200802-04.xml", "source": "cve@mitre.org"}, {"url": "http://bugs.gentoo.org/show_bug.cgi?id=203217", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://gallery.menalto.com/gallery_2.2.4_released", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://osvdb.org/41662", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://osvdb.org/41663", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://osvdb.org/41664", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://osvdb.org/41665", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://osvdb.org/41666", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://osvdb.org/41667", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/28898", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://security.gentoo.org/glsa/glsa-200802-04.xml", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in Menalto Gallery before 2.2.4 have unknown impact, related to (1) \"hotlink protection\" in the URL rewrite module, (2) a WebDAV view in the WebDAV module, (3) a comment view in the Comment module, (4) unspecified \"item information disclosure attacks\" in the Core module Gallery application, (5) the slideshow in the Slideshow module, and (6) multiple Print modules."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades no especificadas en Menalto Gallery anterior a 2.2.4 tiene impacto desconocido, relacionado con (1) \"hotlink protection\" en el m\u00f3dulo URL rewrite, (2) una vista WebDAV en el m\u00f3dulo WebDAV, (3) una vista de comentario en el m\u00f3dulo Comment, (4) \"ataques de revelaci\u00f3n de informaci\u00f3n de \u00edtem\" no especificados en el m\u00f3dulo Core de la aplicaci\u00f3n Gallery, (5) la exposici\u00f3n de diapositivas en el m\u00f3dulo Slideshow, y (6) m\u00faltiples m\u00f3dulos de impresi\u00f3n."}], "lastModified": "2025-04-09T00:30:58.490", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:menalto:gallery:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8783B6EF-0D51-4266-BE80-BCE62FAEB0C9", "versionEndIncluding": "2.2.3"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}