Published: 30/04/2004 Updated: 11/07/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

PHP remote file inclusion vulnerability in init.inc.php in Coppermine Photo Gallery 1.2.0 RC4 allows remote malicious users to execute arbitrary PHP code by modifying the CPG_M_DIR to reference a URL on a remote web server that contains functions.inc.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
coppermine coppermine photo gallery 1.2
coppermine coppermine photo gallery 1.2.1
coppermine coppermine photo gallery 1.1_.0
coppermine coppermine photo gallery 1.1_beta_2
francisco burzi php-nuke 7.2
coppermine coppermine photo gallery 1.2.2_b
francisco burzi php-nuke 6.9
francisco burzi php-nuke 7.0
coppermine coppermine photo gallery 1.0_rc3
francisco burzi php-nuke 7.0_final
francisco burzi php-nuke 7.1

source: wwwsecurityfocuscom/bid/10253/info Coppermine Photo Gallery is reported prone to multiple input-validation vulnerabilities, some of which may lead to arbitrary command execution These issues occur because the application fails to properly sanitize and validate user-supplied input before using it in dynamic content and in functi ...

NVD-CWE-Other http://www.waraxe.us/index.php?modname=sa&id=26 http://www.securityfocus.com/bid/10253 http://secunia.com/advisories/11524 http://www.osvdb.org/5761 http://securitytracker.com/id?1010001 http://marc.info/?l=bugtraq&m=108360247732014&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/16041 https://nvd.nist.gov https://www.exploit-db.com/exploits/24074/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-1988

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect