CVE-2006-6616

N/A Unknown

Published: December 18, 2006 Modified: April 23, 2026

Description

index.php in w00t Gallery 1.4.0 allows remote authenticated users with privileges for one installation to gain access to other installations on the same web server, aka "multi-gallery admin session spanning." NOTE: some of these details are obtained from third party information.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/23383

Source: cve@mitre.org

Patch Vendor Advisory

http://sourceforge.net/project/shownotes.php?release_id=471109

Source: cve@mitre.org

Patch

http://www.securityfocus.com/bid/21590

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/30886

Source: cve@mitre.org

http://secunia.com/advisories/23383

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://sourceforge.net/project/shownotes.php?release_id=471109

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.securityfocus.com/bid/21590

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/30886

Source: af854a3a-2127-422b-91ae-364da2661108

8 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

0.9%

75th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

w00t_gallery