Coppermine

Coppermine Photo Gallery

35 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2004-1989

Exploit
  • EPSS 0.08%
  • Published 30.04.2004 04:00:00
  • Last modified 03.04.2025 01:03:51

PHP remote file inclusion vulnerability in theme.php in Coppermine Photo Gallery 1.2.2b allows remote attackers to execute arbitrary PHP code by modifying the THEME_DIR parameter to reference a URL on a remote web server that contains user_list_info_...

7.5

CVE-2004-1988

Exploit
  • EPSS 0.08%
  • Published 30.04.2004 04:00:00
  • Last modified 03.04.2025 01:03:51

PHP remote file inclusion vulnerability in init.inc.php in Coppermine Photo Gallery 1.2.0 RC4 allows remote attackers to execute arbitrary PHP code by modifying the CPG_M_DIR to reference a URL on a remote web server that contains functions.inc.php.

7.5

CVE-2004-1987

Exploit
  • EPSS 0.28%
  • Published 30.04.2004 04:00:00
  • Last modified 03.04.2025 01:03:51

picmgmtbatch.inc.php in Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote attackers with administrative privileges to execute arbitrary commands via shell metacharacters in the (1) $CONFIG['impath'] or (2) $CONFIG['jpeg_qual'] parameters.

4.3

CVE-2004-1985

Exploit
  • EPSS 0.16%
  • Published 30.04.2004 04:00:00
  • Last modified 03.04.2025 01:03:51

Cross-site scripting (XSS) vulnerability in menu.inc.php in Coppermine Photo Gallery 1.2.2b allows remote attackers to inject arbitrary HTML or web script via the CPG_URL parameter.

5

CVE-2004-1986

Exploit
  • EPSS 0.11%
  • Published 04.04.2004 05:00:00
  • Last modified 03.04.2025 01:03:51

Directory traversal vulnerability in modules.php in Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote attackers with administrative privileges to read arbitrary files via a .. (dot dot) in the startdir parameter.