The URL rewrite module in Menalto Gallery before 2.2.4 allows attackers to include and execute arbitrary local files via unknown vectors related to the admin controller.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Gallery |
Menalto |
* |
2.2.3 (including) |
References