6 matches found
CVE-2008-0506
creationtimestamp| type| source ---|---|--- 2010-07-03 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/16909 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/copperminepiceditor.rb 2025-02-06 03:13:38+00:00|...
Coppermine Photo Gallery 1.4.14 - 'picEditor.php' Command Execution (Metasploit)
$Id: copperminepiceditor.rb 9671 2010-07-03 06:21:31Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Immunity Canvas: COPPERMINE
Name| coppermine ---|--- CVE| CVE-2008-0506 Exploit Pack| CANVAS Description| coppermine Notes| CVE Name: CVE-2008-0506 VENDOR: Coppermine URL: http://www.milw0rm.com/exploits/5019 Repeatability: Infinite CVE Url: https://vulners.com/cve/CVE-2008-0506 CVSS: 6.8...
CVE-2008-0506
include/imageObjectIM.class.php in Coppermine Photo Gallery CPG before 1.4.15, when the ImageMagick picture processing method is configured, allows remote attackers to execute arbitrary commands via shell metacharacters in the 1 quality, 2 angle, or 3 clipval parameter to picEditor.php...
CVE-2008-0506
include/imageObjectIM.class.php in Coppermine Photo Gallery CPG before 1.4.15, when the ImageMagick picture processing method is configured, allows remote attackers to execute arbitrary commands via shell metacharacters in the 1 quality, 2 angle, or 3 clipval parameter to picEditor.php...
CVE-2008-0506
CVE-2008-0506 affects Coppermine Photo Gallery (CPG) implemention, specifically picEditor.php when using ImageMagick. The vulnerability arises because the (quality, angle, clipval) parameters are not properly escaped before passing to PHP exec, allowing remote command execution via shell metachar...