Absolute path traversal vulnerability in docs/showdocs.php in Coppermine Photo Gallery 1.4.3 and previous versions allows remote malicious users to include arbitrary files via the f parameter, and possibly remote files using UNC share pathnames.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
coppermine coppermine photo gallery 1.4.3 |