Lucene search
PRIOn knowledge basePRION:CVE-2008-0506HistoryJan 31, 2008 - 8:00 p.m.
Code injection
2008-01-3120:00:00
PRIOn knowledge base
www.prio-n.com
6
include/imageObjectIM.class.php in Coppermine Photo Gallery (CPG) before 1.4.15, when the ImageMagick picture processing method is configured, allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) quality, (2) angle, or (3) clipval parameter to picEditor.php.
| CPE | Name | Operator | Version |
|---|---|---|---|
| coppermine_photo_gallery | le | 1.4.14 |
References
coppermine-gallery.net/forum/index.php?topic=50103.0
secunia.com/advisories/28682
www.securityfocus.com/archive/1/487310/100/200/threaded
www.securityfocus.com/bid/27512
www.securitytracker.com/id?1019286
www.vupen.com/english/advisories/2008/0367
www.waraxe.us/advisory-65.html
www.exploit-db.com/exploits/5019
Related
cve
cve
CVE-2008-0506
2008-01-31 20:00:00
canvas
canvas
Immunity Canvas: COPPERMINE
2008-01-31 20:00:00
nessus
nessus
packetstorm
packetstorm
Coppermine Photo Gallery 1.4.14 picEditor.php Command Execution
2010-02-20 00:00:00
nvd
nvd
CVE-2008-0506
2008-01-31 20:00:00
cvelist
cvelist
CVE-2008-0506
2008-01-31 19:30:00
openvas
openvas
FreeBSD Ports: coppermine
2008-09-04 00:00:00
FreeBSD Ports: coppermine
2008-09-04 00:00:00
freebsd
freebsd
coppermine -- multiple vulnerabilities
2007-11-06 00:00:00