3 matches found
FreeBSD Ports: coppermine
The remote host is missing an update to the system as announced in the referenced advisory. VID 6738977b-e9a5-11da-b9f4-00123ffe8333 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
CVE-2006-1909
The CVE-2006-1909 vulnerability affects Coppermine Photo Gallery, specifically index.php in version 1.4.4. It allows Local File Inclusion/Directory Traversal through the file parameter using patterns like .//./, collapsing to ../ and enabling reading arbitrary local files and potentially executin...
Coppermine Photo Gallery index.php file Parameter Local File Inclusion
The version of Coppermine Gallery installed on the remote host fails to properly sanitize input to the 'file' parameter of the 'index.php' script before using it in a PHP 'includeonce' function. Regardless of PHP's 'registerglobals' setting, an unauthenticated attacker may be able to exploit this...