Multiple SQL injection vulnerabilities in Coppermine Photo Gallery (CPG) prior to 1.4.15 allow remote authenticated administrators to execute arbitrary SQL commands via the (1) albumid, (2) startpic, and (3) numpics parameters to util.php; and (4) cid_array parameter to reviewcom.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
coppermine-gallery coppermine photo gallery 1.4.1 |
||
coppermine-gallery coppermine photo gallery 1.4.0 |
||
coppermine-gallery coppermine photo gallery 1.3.1 |
||
coppermine-gallery coppermine photo gallery 1.3.0 |
||
coppermine-gallery coppermine photo gallery 1.1 |
||
coppermine-gallery coppermine photo gallery 1.1.0 |
||
coppermine-gallery coppermine photo gallery |
||
coppermine-gallery coppermine photo gallery 1.4.13 |
||
coppermine-gallery coppermine photo gallery 1.4 |
||
coppermine-gallery coppermine photo gallery 1.2.1 |
||
coppermine-gallery coppermine photo gallery 1.0 |
||
coppermine-gallery coppermine photo gallery 1.4.12 |
||
coppermine-gallery coppermine photo gallery 1.4.11 |
||
coppermine-gallery coppermine photo gallery 1.3.5 |
||
coppermine-gallery coppermine photo gallery 1.3.4 |
||
coppermine-gallery coppermine photo gallery 1.2.0 |
||
coppermine-gallery coppermine photo gallery 1.4.10 |
||
coppermine-gallery coppermine photo gallery 1.3.3 |
||
coppermine-gallery coppermine photo gallery 1.3.2 |
||
coppermine-gallery coppermine photo gallery 1.2 |