CVE-2007-0082

IMGallery <= 2.5 - Authenticated Arbitrary PHP File Upload via Multiple Extensions

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-0082. PoCs published by Kacper.

AI-analyzed exploit summary This exploit leverages a file upload vulnerability in IMGallery <= 2.5, allowing arbitrary PHP file upload by bypassing MIME type checks and filename sanitization. The PoC demonstrates how to upload a malicious PHP script disguised as an image file.

Description

users_adm/start1.php in IMGallery 2.5 and earlier does not properly handle files with multiple extensions, which allows remote authenticated users to upload and execute arbitrary PHP scripts.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Kacper · phpwebappsphp
https://www.exploit-db.com/exploits/3049

This exploit leverages a file upload vulnerability in IMGallery <= 2.5, allowing arbitrary PHP file upload by bypassing MIME type checks and filename sanitization. The PoC demonstrates how to upload a malicious PHP script disguised as an image file.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: IMGallery <= 2.5
Auth required
Prerequisites: Valid user session ID · File upload functionality enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2007/0010
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/31237
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/3049
Exploit, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/21827

Scores

EPSS 0.0198
EPSS Percentile 78.0%

Details

Status published
Products (2)
imgallery/imgallery 2.4
imgallery/imgallery 2.5
Published Jan 05, 2007
Tracked Since Feb 18, 2026