Vulnerability Details CVE-2010-2127
PHP remote file inclusion vulnerability in gallery.php in JV2 Folder Gallery 3.1 allows remote attackers to execute arbitrary PHP code via a URL in the lang_file parameter.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.012
EPSS Ranking 79.3%
CVSS Severity
CVSS v2 Score 7.5
References
- http://packetstormsecurity.org/1005-exploits/jv2foldergallery-rfi.txt
- http://www.exploit-db.com/exploits/12688
- http://www.securityfocus.com/bid/40339
- https://exchange.xforce.ibmcloud.com/vulnerabilities/58807
- http://packetstormsecurity.org/1005-exploits/jv2foldergallery-rfi.txt
- http://www.exploit-db.com/exploits/12688
- http://www.securityfocus.com/bid/40339
- https://exchange.xforce.ibmcloud.com/vulnerabilities/58807
Products affected by CVE-2010-2127
-
cpe:2.3:a:jv2design:jv2_folder_gallery:3.1