Gallery 1.4.3 and earlier allows remote attackers to bypass authentication and obtain Gallery administrator privileges.
2004-08-06T04:00:00.000
2025-04-03T01:03:51.193
Deferred
CVSSv2: 10.0 (HIGH)
AV:N/AC:L/Au:N/C:C/I:C/A:C
10.0
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | gallery_project | gallery | 1.4 | Yes |
| Application | gallery_project | gallery | 1.4.1 | Yes |
| Application | gallery_project | gallery | 1.4.2 | Yes |
| Application | gallery_project | gallery | 1.4.3_pl1 | Yes |
| Application | gallery_project | gallery | 1.4_pl1 | Yes |
| Application | gallery_project | gallery | 1.4_pl2 | Yes |
| Operating System | debian | debian_linux | 3.0 | Yes |
| Operating System | debian | debian_linux | 3.0 | Yes |
| Operating System | debian | debian_linux | 3.0 | Yes |
| Operating System | debian | debian_linux | 3.0 | Yes |
| Operating System | debian | debian_linux | 3.0 | Yes |
| Operating System | debian | debian_linux | 3.0 | Yes |
| Operating System | debian | debian_linux | 3.0 | Yes |
| Operating System | debian | debian_linux | 3.0 | Yes |
| Operating System | debian | debian_linux | 3.0 | Yes |
| Operating System | debian | debian_linux | 3.0 | Yes |
| Operating System | debian | debian_linux | 3.0 | Yes |
| Operating System | debian | debian_linux | 3.0 | Yes |