Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
coppermine vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-6123
Coppermine Photo Gallery (CPG) 1.4.8 stable, with register_globals enabled, allows remote malicious users to bypass XSS protection and set arbitrary variables via a query string that causes the variable to be defined in global space, with separate _GET, _REQUEST, or other critica...
Coppermine Coppermine Photo Gallery 1.4.8 Stable
NA
CVE-2006-4321
PHP remote file inclusion vulnerability in cpg.php in the Coppermine Photo Gallery component (com_cpg) 1.0 and previous versions for Mambo allows remote malicious users to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
Coppermine Coppermine Photo Gallery 1.0
1 EDB exploit
NA
CVE-2006-3064
SQL injection vulnerability in the add_hit function in include/function.inc.php in Coppermine Photo Gallery (CPG) 1.4.8, when "Keep detailed hit statistics" is enabled, allows remote malicious users to execute arbitrary SQL commands via the (1) referer and (2) user-agen...
Coppermine Coppermine Photo Gallery 1.4.8
NA
CVE-2015-3922
Open redirect vulnerability in mode.php in Coppermine Photo Gallery prior to 1.5.36 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the referer parameter.
Coppermine-gallery Coppermine Photo Gallery
NA
CVE-2015-3923
Coppermine Photo Gallery prior to 1.5.36 allows remote malicious users to enumerate directories via a full path in the folder parameter to minibrowser.php.
Coppermine-gallery Coppermine Photo Gallery
NA
CVE-2006-0872
Directory traversal vulnerability in init.inc.php in Coppermine Photo Gallery 1.4.3 and previous versions allows remote malicious users to include arbitrary files via a .. (dot dot) sequence and trailing NULL (%00) byte in the lang parameter.
Coppermine Coppermine Photo Gallery 1.4.3
NA
CVE-2005-1226
Coppermine Photo Gallery 1.3.2 stores passwords in plaintext, which allows remote malicious users to obtain sensitive information.
Coppermine Coppermine Photo Gallery 1.3.2
NA
CVE-2005-1225
SQL injection vulnerability in Coppermine Photo Gallery 1.3.2 allows remote malicious users to execute arbitrary SQL commands via the favs parameter to (1) init.inc.php or (2) zipdownload.php.
Coppermine Coppermine Photo Gallery 1.3.2
NA
CVE-2009-1616
Cross-site scripting (XSS) vulnerability in docs/showdoc.php in Coppermine Photo Gallery (CPG) prior to 1.4.22 allows remote malicious users to inject arbitrary web script or HTML via the css parameter, a different vector than CVE-2008-0505.
Coppermine Coppermine Photo Gallery 1.4.22
1 EDB exploit
NA
CVE-2008-7187
Coppermine Photo Gallery (CPG) 1.4.14 allows remote malicious users to obtain sensitive information via a direct request to include/slideshow.inc.php, which leaks the installation path in an error message.
Coppermine-gallery Coppermine Photo Gallery 1.4.14
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »