CVE-2013-2138

high

Published 2013-10-10 · Modified 2026-04-29

CVSS v3

—

CVSS v2

7.5

VIR risk

7.5

Description

The (1) uploadify and (2) flowplayer SWF files in Gallery 3 before 3.0.8 do not properly remove query parameters and fragments, which allows remote attackers to have an unspecified impact via a replay attack.

Predictions

Exploit likelihood

20%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://galleryproject.org/gallery_3_0_8

Application impact

Vendor	Product	Versions
menalto	gallery	`{"endIncluding":"3.0.7"}`
menalto	gallery	`3.0`
menalto	gallery	`3.0.1`
menalto	gallery	`3.0.2`
menalto	gallery	`3.0.3`
menalto	gallery	`3.0.4`
menalto	gallery	`3.0.5`
menalto	gallery	`3.0.6`

References

http://galleryproject.org/gallery_3_0_8
http://sourceforge.net/apps/trac/gallery/ticket/2068
http://sourceforge.net/apps/trac/gallery/ticket/2070
http://www.openwall.com/lists/oss-security/2013/06/04/9
https://bugzilla.redhat.com/show_bug.cgi?id=970596
https://github.com/gallery/gallery3/commit/3e5bba2cd4febe8331c0158c11ea418f21c72efa
https://github.com/gallery/gallery3/commit/80bb0f2222dd99ed2ce59e804b833bab63cc376a
http://galleryproject.org/gallery_3_0_8
http://sourceforge.net/apps/trac/gallery/ticket/2068
http://sourceforge.net/apps/trac/gallery/ticket/2070
http://www.openwall.com/lists/oss-security/2013/06/04/9
https://bugzilla.redhat.com/show_bug.cgi?id=970596
https://github.com/gallery/gallery3/commit/3e5bba2cd4febe8331c0158c11ea418f21c72efa
https://github.com/gallery/gallery3/commit/80bb0f2222dd99ed2ce59e804b833bab63cc376a

CWEs

CWE-20

Verify integrity in audit chain (admin only). AS-IS.