Published: 04/04/2004 Updated: 11/07/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Directory traversal vulnerability in modules.php in Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote attackers with administrative privileges to read arbitrary files via a .. (dot dot) in the startdir parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
coppermine coppermine photo gallery 1.1_beta_2
coppermine coppermine photo gallery 1.2
coppermine coppermine photo gallery 1.0_rc3
coppermine coppermine photo gallery 1.1_.0
francisco burzi php-nuke 7.1
francisco burzi php-nuke 7.2
coppermine coppermine photo gallery 1.2.1
coppermine coppermine photo gallery 1.2.2_b
francisco burzi php-nuke 6.9
francisco burzi php-nuke 7.0
francisco burzi php-nuke 7.0_final

source: wwwsecurityfocuscom/bid/10253/info Coppermine Photo Gallery is reported prone to multiple input-validation vulnerabilities, some of which may lead to arbitrary command execution These issues occur because the application fails to properly sanitize and validate user-supplied input before using it in dynamic content and in functio ...

NVD-CWE-Other http://www.waraxe.us/index.php?modname=sa&id=26 http://www.securityfocus.com/bid/10253 http://secunia.com/advisories/11524 http://www.osvdb.org/5758 http://securitytracker.com/id?1010001 http://marc.info/?l=bugtraq&m=108360247732014&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/16042 https://nvd.nist.gov https://www.exploit-db.com/exploits/24073/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-1986

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect