CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2002-2130
https://notcve.org/view.php?id=CVE-2002-2130
31 Dec 2002 — publish_xp_docs.php in Gallery 1.3.2 allows remote attackers to execute arbitrary PHP code by modifying the GALLERY_BASEDIR parameter to reference a URL on a remote web server that contains the code. • http://archives.neohapsis.com/archives/bugtraq/2002-12/0260.html •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2001-0900 – bharat Mediratta Gallery 1.1/1.2 - Directory Traversal
https://notcve.org/view.php?id=CVE-2001-0900
18 Nov 2001 — Directory traversal vulnerability in modules.php in Gallery before 1.2.3 allows remote attackers to read arbitrary files via a .. (dot dot) in the include parameter. • https://www.exploit-db.com/exploits/21157 •
CVSS: 9.8EPSS: 3%CPEs: 3EXPL: 1CVE-2001-1234
https://notcve.org/view.php?id=CVE-2001-1234
02 Oct 2001 — Bharat Mediratta Gallery PHP script before 1.2.1 allows remote attackers to execute arbitrary code by including files from remote web sites via an HTTP request that modifies the includedir variable. • http://archives.neohapsis.com/archives/bugtraq/2001-10/0012.html •