Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 09/01/2007 Updated: 16/10/2018

CVSS v2 Base Score: 6 | Impact Score: 6.4 | Exploitability Score: 6.8

VMScore: 534

Vector: AV:N/AC:M/Au:S/C:P/I:P/A:P

Static code injection vulnerability in Coppermine Photo Gallery 1.4.10 and previous versions allows remote authenticated administrators to execute arbitrary PHP code via the Username to login.php, which is injected into an error message in security.log.php, which can then be accessed using viewlog.php.

Vulnerable Product	Search on Vulmon	Subscribe to Product
coppermine coppermine photo gallery

NVD-CWE-Other http://www.attrition.org/pipermail/vim/2007-January/001218.html http://acid-root.new.fr/poc/19070104.txt http://securityreason.com/securityalert/2107 http://osvdb.org/33383 http://www.securityfocus.com/archive/1/456051/100/0/threaded https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2007-0115

Vulnerability Summary

References

Vulmon Search

About

Products

Connect