FotoGalerie/KissGallery: Information Exposure Vulnerability

A place for security related announcements and discussions - please check this forum frequently!
Post Reply
cmb
Posts: 12770
Joined: Tue Jun 21, 2011 11:04 am
Location: Mü-Sa, RLP, DE
Contact:

FotoGalerie/KissGallery: Information Exposure Vulnerability

Post by cmb » Wed Nov 19, 2014 11:07 pm

Hello Community,

FotoGalerie v7.2 (downloaded just now) has an information exposure vulnerability. KissGallery 1.1 has the same issue. I have reported this issue on 4th of November to Gert, but he has not responded yet. As there is no official fix available, I will not publicly announce any details.

I suggest to contact Gert for a fix.

Christoph
Christoph M. Becker –Plugins for CMSimple_XH, but not for CMSimple 4+

Post Reply