Lucene search

K
CoppermineCoppermine Photo Gallery1.4.3

5 matches found

CVE
CVE
added 2006/02/24 11:2 a.m.53 views

CVE-2006-0873

Absolute path traversal vulnerability in docs/showdocs.php in Coppermine Photo Gallery 1.4.3 and earlier allows remote attackers to include arbitrary files via the f parameter, and possibly remote files using UNC share pathnames.

5CVSS6.8AI score0.00806EPSS
CVE
CVE
added 2006/05/22 10:2 p.m.40 views

CVE-2006-2514

Coppermine galleries before 1.4.6, when running on Apache with mod_mime installed, allows remote attackers to upload arbitrary files via a filename with multiple file extensions.

7.5CVSS6.8AI score0.00741EPSS
CVE
CVE
added 2006/06/12 10:2 p.m.34 views

CVE-2006-2976

Unspecified vulnerability in usermgr.php in Coppermine Photo Gallery before 1.4.7 has unknown impact and remote attack vectors, possibly related to authorization/authentication errors.

7.5CVSS7.1AI score0.00737EPSS
CVE
CVE
added 2006/02/24 11:2 a.m.28 views

CVE-2006-0872

Directory traversal vulnerability in init.inc.php in Coppermine Photo Gallery 1.4.3 and earlier allows remote attackers to include arbitrary files via a .. (dot dot) sequence and trailing NULL (%00) byte in the lang parameter.

5CVSS6.6AI score0.02538EPSS
CVE
CVE
added 2008/04/16 5:5 p.m.27 views

CVE-2008-1840

SQL injection vulnerability in upload.php in Coppermine Photo Gallery (CPG) 1.4.16 and earlier allows remote authenticated users or user-assisted remote HTTP servers to execute arbitrary SQL commands via the Content-Type HTTP response header provided by the HTTP server that is used for an upload.

6.5CVSS7.9AI score0.00515EPSS