Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
coppermine coppermine photo gallery vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2008-7186
Coppermine Photo Gallery (CPG) 1.4.14 does not restrict access to update.php, which allows remote malicious users to obtain sensitive information such as the database table prefix via a direct request. NOTE: this might be leveraged for attacks against CVE-2008-0504.
Coppermine-gallery Coppermine Photo Gallery 1.4.14
445
VMScore
CVE-2008-7187
Coppermine Photo Gallery (CPG) 1.4.14 allows remote malicious users to obtain sensitive information via a direct request to include/slideshow.inc.php, which leaks the installation path in an error message.
Coppermine-gallery Coppermine Photo Gallery 1.4.14
445
VMScore
CVE-2006-0872
Directory traversal vulnerability in init.inc.php in Coppermine Photo Gallery 1.4.3 and previous versions allows remote malicious users to include arbitrary files via a .. (dot dot) sequence and trailing NULL (%00) byte in the lang parameter.
Coppermine Coppermine Photo Gallery 1.4.3
445
VMScore
CVE-2006-0873
Absolute path traversal vulnerability in docs/showdocs.php in Coppermine Photo Gallery 1.4.3 and previous versions allows remote malicious users to include arbitrary files via the f parameter, and possibly remote files using UNC share pathnames.
Coppermine Coppermine Photo Gallery 1.4.3
445
VMScore
CVE-2005-3979
relocate_server.php in Coppermine Photo Gallery (CPG) 1.4.2 and 1.4 beta is not removed after installation and does not use authentication, which allows remote malicious users to obtain sensitive information, such as database configuration, via a direct request.
Coppermine-gallery Coppermine Photo Gallery 1.4.2
Coppermine-gallery Coppermine Photo Gallery 1.4
445
VMScore
CVE-2004-1984
Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote malicious users to obtain sensitive information via a direct HTTP request to (1) phpinfo.php, (2) addpic.php, (3) config.php, (4) db_input.php, (5) displayecard.php, (6) ecard.php, (7) crop.inc.php, which reveal the full...
Coppermine Coppermine Photo Gallery 1.1 Beta 2
Coppermine Coppermine Photo Gallery 1.2
Francisco Burzi Php-nuke 7.0
Francisco Burzi Php-nuke 7.2
Francisco Burzi Php-nuke 7.0 Final
Coppermine Coppermine Photo Gallery 1.0 Rc3
Coppermine Coppermine Photo Gallery 1.2.2 B
Coppermine Coppermine Photo Gallery 1.2.1
Coppermine Coppermine Photo Gallery 1.1 .0
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 7.1
440
VMScore
CVE-2010-4693
Multiple cross-site scripting (XSS) vulnerabilities in Coppermine Photo Gallery 1.5.10 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) h and (2) t parameters to help.php, or (3) picfile_XXX parameter to searchnew.php.
Coppermine-gallery Coppermine Photo Gallery 1.4.17
Coppermine-gallery Coppermine Photo Gallery 1.5.8
Coppermine-gallery Coppermine Photo Gallery 1.4.11
Coppermine-gallery Coppermine Photo Gallery 1.4.19
Coppermine-gallery Coppermine Photo Gallery 1.4.14
Coppermine-gallery Coppermine Photo Gallery 1.2.0
Coppermine-gallery Coppermine Photo Gallery 1.4.8
Coppermine-gallery Coppermine Photo Gallery 1.2.1
Coppermine-gallery Coppermine Photo Gallery 1.4.23
Coppermine-gallery Coppermine Photo Gallery 1.4.22
Coppermine-gallery Coppermine Photo Gallery 1.4.7
Coppermine-gallery Coppermine Photo Gallery 1.4.0
Coppermine-gallery Coppermine Photo Gallery
Coppermine-gallery Coppermine Photo Gallery 1.5.4
Coppermine-gallery Coppermine Photo Gallery 1.4.2
Coppermine-gallery Coppermine Photo Gallery 1.4.26
Coppermine-gallery Coppermine Photo Gallery 1.4.16
Coppermine-gallery Coppermine Photo Gallery 1.4.3
Coppermine-gallery Coppermine Photo Gallery 1.2
Coppermine-gallery Coppermine Photo Gallery 1.5.6
Coppermine-gallery Coppermine Photo Gallery 1.4.15
Coppermine-gallery Coppermine Photo Gallery 1.0
2 EDB exploits
435
VMScore
CVE-2009-1616
Cross-site scripting (XSS) vulnerability in docs/showdoc.php in Coppermine Photo Gallery (CPG) prior to 1.4.22 allows remote malicious users to inject arbitrary web script or HTML via the css parameter, a different vector than CVE-2008-0505.
Coppermine Coppermine Photo Gallery 1.4.22
1 EDB exploit
435
VMScore
CVE-2004-1985
Cross-site scripting (XSS) vulnerability in menu.inc.php in Coppermine Photo Gallery 1.2.2b allows remote malicious users to inject arbitrary HTML or web script via the CPG_URL parameter.
Coppermine Coppermine Photo Gallery 1.1 Beta 2
Coppermine Coppermine Photo Gallery 1.2
Francisco Burzi Php-nuke 7.0
Francisco Burzi Php-nuke 7.2
Francisco Burzi Php-nuke 7.0 Final
Coppermine Coppermine Photo Gallery 1.0 Rc3
Coppermine Coppermine Photo Gallery 1.2.2 B
Coppermine Coppermine Photo Gallery 1.2.1
Coppermine Coppermine Photo Gallery 1.1 .0
Francisco Burzi Php-nuke 6.9
Francisco Burzi Php-nuke 7.1
1 EDB exploit
405
VMScore
CVE-2007-0836
admin.php in Coppermine Photo Gallery 1.4.10, and possibly earlier, allows remote authenticated users to include arbitrary local and possibly remote files via the (1) "Path to custom header include" and (2) "Path to custom footer include" form fields. NOTE: Th...
Coppermine Coppermine Photo Gallery
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »