Description
Multiple directory traversal vulnerabilities in KoschtIT Image Gallery 1.82 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the file parameter to (1) ki_makepic.php and (2) ki_nojsdisplayimage.php in ki_base/.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by ahmadbady · textwebappsphp
https://www.exploit-db.com/exploits/8334
References (2)
Core 2
Core References
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/34335
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/8334
Scores
EPSS
0.0227
EPSS Percentile
84.7%
Details
CWE
CWE-22
Status
published
Products (1)
koschtit/koschtit_image_gallery
1.82
Published
May 01, 2009
Tracked Since
Feb 18, 2026