Vendor Dictionary: Bharat Mediratta

Bharat Mediratta

Short Name:	Bharat Mediratta
Previous Names:	[None Entered]
URL:	http://gallery.menalto.com/ [visit link]
Email:	[None Entered]
Security URL:	[None Entered]
Security Email:	[None Entered]
Knowledge Base:	[None Entered]
Notes:	[No Notes]
Full Details...

Vulnerabilities by Vendor Product

Bharat Mediratta

Bharat Mediratta

Gallery: 1.1; OSVDB ID: 677 PHP-Nuke Gallery Add-on modules.php include Parameter Traversal Arbitrary File Access; OSVDB ID: 1967 Bharat Mediratta Gallery includedir Parameter Remote File Inclusion; OSVDB ID: 2322 Gallery search.php searchstring Parameter XSS; 1.2; OSVDB ID: 677 PHP-Nuke Gallery Add-on modules.php include Parameter Traversal Arbitrary File Access; OSVDB ID: 1967 Bharat Mediratta Gallery includedir Parameter Remote File Inclusion; OSVDB ID: 2322 Gallery search.php searchstring Parameter XSS; 1.2.1; OSVDB ID: 677 PHP-Nuke Gallery Add-on modules.php include Parameter Traversal Arbitrary File Access; OSVDB ID: 2322 Gallery search.php searchstring Parameter XSS; 1.2.2; OSVDB ID: 677 PHP-Nuke Gallery Add-on modules.php include Parameter Traversal Arbitrary File Access; OSVDB ID: 2322 Gallery search.php searchstring Parameter XSS; 1.2x; 1.3; OSVDB ID: 2322 Gallery search.php searchstring Parameter XSS; 1.3.1; OSVDB ID: 3737 Gallery HTTP Global Variables File Inclusion; OSVDB ID: 2322 Gallery search.php searchstring Parameter XSS; 1.3.2; OSVDB ID: 3737 Gallery HTTP Global Variables File Inclusion; OSVDB ID: 2322 Gallery search.php searchstring Parameter XSS; 1.3.3; OSVDB ID: 3737 Gallery HTTP Global Variables File Inclusion; OSVDB ID: 2322 Gallery search.php searchstring Parameter XSS; 1.3.4; OSVDB ID: 2322 Gallery search.php searchstring Parameter XSS; 1.4; OSVDB ID: 3737 Gallery HTTP Global Variables File Inclusion; OSVDB ID: 6524 Gallery init.php Authentication Bypass; OSVDB ID: 2662 Gallery index.php GALLERY_BASEDIR Parameter Remote File Inclusion; 1.4-pl1; OSVDB ID: 2662 Gallery index.php GALLERY_BASEDIR Parameter Remote File Inclusion; 1.4.1; OSVDB ID: 3737 Gallery HTTP Global Variables File Inclusion; OSVDB ID: 6524 Gallery init.php Authentication Bypass; OSVDB ID: 19636 Gallery Unspecified Small Security Issue; 1.2.x; OSVDB ID: 6524 Gallery init.php Authentication Bypass; 1.3.x; OSVDB ID: 6524 Gallery init.php Authentication Bypass; 1.4.2; OSVDB ID: 6524 Gallery init.php Authentication Bypass; 1.4.3-pl1; OSVDB ID: 6524 Gallery init.php Authentication Bypass; 1.4.4; OSVDB ID: 9019 Gallery save_photos.php Arbitrary Command Execution; 1.3.4-pl1; OSVDB ID: 13029 Gallery add_comment.php index Parameter XSS; OSVDB ID: 13030 Gallery slideshow_low.php Multiple Parameter XSS; OSVDB ID: 13031 Gallery search.php searchstring Parameter XSS; 1.4.4-pl2; OSVDB ID: 13033 Gallery do_command.php return Parameter XSS; OSVDB ID: 13032 Gallery login.php username Parameter XSS; 2.0 Alpha; OSVDB ID: 13034 Gallery main.php Path Disclosure; 1.4.4-pl5; OSVDB ID: 13029 Gallery add_comment.php index Parameter XSS; OSVDB ID: 13033 Gallery do_command.php return Parameter XSS; OSVDB ID: 13030 Gallery slideshow_low.php Multiple Parameter XSS; OSVDB ID: 13031 Gallery search.php searchstring Parameter XSS; OSVDB ID: 13032 Gallery login.php username Parameter XSS; 1.5.1-RC1; OSVDB ID: 18684 Gallery with PostNuke Integration Access Validation Privilege Escalation; 1.5; OSVDB ID: 19636 Gallery Unspecified Small Security Issue; OSVDB ID: 18684 Gallery with PostNuke Integration Access Validation Privilege Escalation; 2.0.1; OSVDB ID: 21221 Gallery Add Image From Web XSS; 2.0; OSVDB ID: 21221 Gallery Add Image From Web XSS; 2.0 (RC 2); OSVDB ID: 21221 Gallery Add Image From Web XSS; 2.0 (RC 1); OSVDB ID: 21221 Gallery Add Image From Web XSS; 2.0 (Beta 3); OSVDB ID: 21221 Gallery Add Image From Web XSS; 2.0 (Beta 2); OSVDB ID: 21221 Gallery Add Image From Web XSS; 2.0 (Beta 1); OSVDB ID: 21221 Gallery Add Image From Web XSS; 2.0 (Alpha 4); OSVDB ID: 21221 Gallery Add Image From Web XSS; 2.0 (Alpha 3); OSVDB ID: 21221 Gallery Add Image From Web XSS; 2.0 (Alpha 2); OSVDB ID: 21221 Gallery Add Image From Web XSS; 2.0 (Alpha 1); OSVDB ID: 21221 Gallery Add Image From Web XSS; CVS HEAD (before 2005-11-26); OSVDB ID: 21221 Gallery Add Image From Web XSS; 1.5.2; OSVDB ID: 22943 Gallery zipdownload Malformed Zip Agressive File Deletion DoS; OSVDB ID: 22944 Gallery Crafted File Path Manipulation Arbitrary Code Execution; OSVDB ID: 24466 Gallery Unspecified JavaScript Injection; 1.5.2-pl1; OSVDB ID: 22943 Gallery zipdownload Malformed Zip Agressive File Deletion DoS; OSVDB ID: 22944 Gallery Crafted File Path Manipulation Arbitrary Code Execution; 2.1 RC 1; OSVDB ID: 24102 Gallery Multiple Unspecified Security Issues; 1.2.5; OSVDB ID: 35391 Gallery errors/configmode.php GALLERY_BASEDIR Parameter Remote File Inclusion; OSVDB ID: 35390 Gallery errors/unconfigured.php GALLERY_BASEDIR Parameter Remote File Inclusion; OSVDB ID: 35388 Gallery errors/needinit.php GALLERY_BASEDIR Parameter Remote File Inclusion; OSVDB ID: 35389 Gallery errors/reconfigure.php GALLERY_BASEDIR Parameter Remote File Inclusion; 3.0; OSVDB ID: 70628 Gallery modules/gallery/models/item.php Arbitrary File Upload

The Gallery: 1.5.2-RC2; OSVDB ID: 22660 The Gallery User Name XSS

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.