Remote Code Execution in Bharat Mediratta Gallery PHP Script

Remote Code Execution in Bharat Mediratta Gallery PHP Script

CVE-2001-1234 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Bharat Mediratta Gallery PHP script before 1.2.1 allows remote attackers to execute arbitrary code by including files from remote web sites via an HTTP request that modifies the includedir variable.

Learn more about our Web App Pen Testing.