Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbL4teralEDB-ID:30595
HistorySep 17, 2007 - 12:00 a.m.

Coppermine Photo Gallery 1.4.12 - 'log' Local File Inclusion

2007-09-1700:00:00
L4teral
www.exploit-db.com
19

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/25698/info
 
Coppermine Photo Gallery is prone to a cross-site scripting issue and a local file-include issue.
 
Attackers can exploit these issues to steal cookie-based authentication credentials, execute arbitrary code, and retrieve arbitrary content within the context of the webserver process.
 
Coppermine Photo Gallery 1.4.12 is vulnerable; other versions may also be affected. 

http://localhost/cpg/viewlog.php?log=../../../../../../../../../etc/passwd%00

Related

cvelist 1
cve 1
nvd 1
prion 1
openvas 2
nessus 1
freebsd 1
cvelist
cvelist
CVE-2007-4976
2007-09-19 18:00:00
cve
cve
CVE-2007-4976
2007-09-19 18:17:00
nvd
nvd
CVE-2007-4976
2007-09-19 18:17:00
prion
prion
Directory traversal
2007-09-19 18:17:00
openvas
openvas
FreeBSD Ports: coppermine
2008-09-04 00:00:00
FreeBSD Ports: coppermine
2008-09-04 00:00:00
nessus
nessus
FreeBSD : coppermine -- multiple vulnerabilities (12488805-6773-11dc-8be8-02e0185f8d72)
2007-09-24 00:00:00
freebsd
freebsd
coppermine -- multiple vulnerabilities
2007-09-14 00:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:30595
cvelist1cve1nvd1prion1openvas2nessus1freebsd1