Lucene search
MitreCVE-2008-1840HistoryApr 16, 2008 - 5:05 p.m.
CVE-2008-1840
2008-04-1617:05:00
CWE-89
mitre
web.nvd.nist.gov
21
cve
2008
1840
sql injection
coppermine photo gallery
nvd
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
7.9
Confidence
Low
EPSS
0.002
Percentile
58.6%
SQL injection vulnerability in upload.php in Coppermine Photo Gallery (CPG) 1.4.16 and earlier allows remote authenticated users or user-assisted remote HTTP servers to execute arbitrary SQL commands via the Content-Type HTTP response header provided by the HTTP server that is used for an upload.
Affected configurations
Node
copperminecoppermine_photo_galleryRange≤1.4.16
ORcopperminecoppermine_photo_galleryMatch1.4
ORcopperminecoppermine_photo_galleryMatch1.4.1
ORcopperminecoppermine_photo_galleryMatch1.4.2
ORcopperminecoppermine_photo_galleryMatch1.4.3
ORcopperminecoppermine_photo_galleryMatch1.4.4
ORcopperminecoppermine_photo_galleryMatch1.4.5
ORcopperminecoppermine_photo_galleryMatch1.4.6
ORcopperminecoppermine_photo_galleryMatch1.4.7
ORcopperminecoppermine_photo_galleryMatch1.4.8
ORcopperminecoppermine_photo_galleryMatch1.4.9
ORcopperminecoppermine_photo_galleryMatch1.4.10
ORcopperminecoppermine_photo_galleryMatch1.4.11
ORcopperminecoppermine_photo_galleryMatch1.4.12
ORcopperminecoppermine_photo_galleryMatch1.4.13
ORcopperminecoppermine_photo_galleryMatch1.4.14
| Vendor | Product | Version | CPE |
|---|---|---|---|
| coppermine | coppermine_photo_gallery | * | cpe:2.3:a:coppermine:coppermine_photo_gallery:*:*:*:*:*:*:*:* |
| coppermine | coppermine_photo_gallery | 1.4 | cpe:2.3:a:coppermine:coppermine_photo_gallery:1.4:*:*:*:*:*:*:* |
| coppermine | coppermine_photo_gallery | 1.4.1 | cpe:2.3:a:coppermine:coppermine_photo_gallery:1.4.1:*:*:*:*:*:*:* |
| coppermine | coppermine_photo_gallery | 1.4.2 | cpe:2.3:a:coppermine:coppermine_photo_gallery:1.4.2:*:*:*:*:*:*:* |
| coppermine | coppermine_photo_gallery | 1.4.3 | cpe:2.3:a:coppermine:coppermine_photo_gallery:1.4.3:*:*:*:*:*:*:* |
| coppermine | coppermine_photo_gallery | 1.4.4 | cpe:2.3:a:coppermine:coppermine_photo_gallery:1.4.4:*:*:*:*:*:*:* |
| coppermine | coppermine_photo_gallery | 1.4.5 | cpe:2.3:a:coppermine:coppermine_photo_gallery:1.4.5:*:*:*:*:*:*:* |
| coppermine | coppermine_photo_gallery | 1.4.6 | cpe:2.3:a:coppermine:coppermine_photo_gallery:1.4.6:*:*:*:*:*:*:* |
| coppermine | coppermine_photo_gallery | 1.4.7 | cpe:2.3:a:coppermine:coppermine_photo_gallery:1.4.7:*:*:*:*:*:*:* |
| coppermine | coppermine_photo_gallery | 1.4.8 | cpe:2.3:a:coppermine:coppermine_photo_gallery:1.4.8:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2008-1840
2008-04-16 17:00:00
CVE-2008-1841
2008-04-16 17:00:00
prion
prion
Sql injection
2008-04-16 17:05:00
Sql injection
2008-04-16 17:05:00
nvd
nvd
CVE-2008-1840
2008-04-16 17:05:00
CVE-2008-1841
2008-04-16 17:05:00
cve
cve
CVE-2008-1841
2008-04-16 17:05:00
CVSS2
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
AI Score
7.9
Confidence
Low
EPSS
0.002
Percentile
58.6%
Related for CVE-2008-1840