MidnightBSD

Advisories for coppermine

CVE-2004-1984 MEDIUM

Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote attackers to obtain sensitive information via a direct HTTP request to (1) phpinfo.php, (2) addpic.php, (3) config.php, (4) db_input.php, (5) displayecard.php, (6) ecard.php, (7) crop.inc.php, which reveal the full path in a PHP error message.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.2.2_b
coppermine coppermine_photo_gallery 1.0_rc3
francisco_burzi php-nuke 7.1
coppermine coppermine_photo_gallery 1.1_.0
francisco_burzi php-nuke 7.2
coppermine coppermine_photo_gallery 1.2.1
coppermine coppermine_photo_gallery 1.2
francisco_burzi php-nuke 6.9
francisco_burzi php-nuke 7.0_final
coppermine coppermine_photo_gallery 1.1_beta_2
francisco_burzi php-nuke 7.0
CVE-2004-1985 MEDIUM

Cross-site scripting (XSS) vulnerability in menu.inc.php in Coppermine Photo Gallery 1.2.2b allows remote attackers to inject arbitrary HTML or web script via the CPG_URL parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.2.2_b
coppermine coppermine_photo_gallery 1.0_rc3
francisco_burzi php-nuke 7.1
coppermine coppermine_photo_gallery 1.1_.0
francisco_burzi php-nuke 7.2
coppermine coppermine_photo_gallery 1.2.1
coppermine coppermine_photo_gallery 1.2
francisco_burzi php-nuke 6.9
francisco_burzi php-nuke 7.0_final
coppermine coppermine_photo_gallery 1.1_beta_2
francisco_burzi php-nuke 7.0
CVE-2004-1986 MEDIUM

Directory traversal vulnerability in modules.php in Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote attackers with administrative privileges to read arbitrary files via a .. (dot dot) in the startdir parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.2.2_b
coppermine coppermine_photo_gallery 1.0_rc3
francisco_burzi php-nuke 7.1
coppermine coppermine_photo_gallery 1.1_.0
francisco_burzi php-nuke 7.2
coppermine coppermine_photo_gallery 1.2.1
coppermine coppermine_photo_gallery 1.2
francisco_burzi php-nuke 6.9
francisco_burzi php-nuke 7.0_final
coppermine coppermine_photo_gallery 1.1_beta_2
francisco_burzi php-nuke 7.0
CVE-2004-1987 HIGH

picmgmtbatch.inc.php in Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote attackers with administrative privileges to execute arbitrary commands via shell metacharacters in the (1) $CONFIG['impath'] or (2) $CONFIG['jpeg_qual'] parameters.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.2.2_b
coppermine coppermine_photo_gallery 1.0_rc3
francisco_burzi php-nuke 7.1
coppermine coppermine_photo_gallery 1.1_.0
francisco_burzi php-nuke 7.2
coppermine coppermine_photo_gallery 1.2.1
coppermine coppermine_photo_gallery 1.2
francisco_burzi php-nuke 6.9
francisco_burzi php-nuke 7.0_final
coppermine coppermine_photo_gallery 1.1_beta_2
francisco_burzi php-nuke 7.0
CVE-2004-1988 HIGH

PHP remote file inclusion vulnerability in init.inc.php in Coppermine Photo Gallery 1.2.0 RC4 allows remote attackers to execute arbitrary PHP code by modifying the CPG_M_DIR to reference a URL on a remote web server that contains functions.inc.php.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.2.2_b
coppermine coppermine_photo_gallery 1.0_rc3
francisco_burzi php-nuke 7.1
coppermine coppermine_photo_gallery 1.1_.0
francisco_burzi php-nuke 7.2
coppermine coppermine_photo_gallery 1.2.1
coppermine coppermine_photo_gallery 1.2
francisco_burzi php-nuke 6.9
francisco_burzi php-nuke 7.0_final
coppermine coppermine_photo_gallery 1.1_beta_2
francisco_burzi php-nuke 7.0
CVE-2004-1989 HIGH

PHP remote file inclusion vulnerability in theme.php in Coppermine Photo Gallery 1.2.2b allows remote attackers to execute arbitrary PHP code by modifying the THEME_DIR parameter to reference a URL on a remote web server that contains user_list_info_box.inc.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.2.2_b
coppermine coppermine_photo_gallery 1.0_rc3
francisco_burzi php-nuke 7.1
coppermine coppermine_photo_gallery 1.1_.0
francisco_burzi php-nuke 7.2
coppermine coppermine_photo_gallery 1.2.1
coppermine coppermine_photo_gallery 1.2
francisco_burzi php-nuke 6.9
francisco_burzi php-nuke 7.0_final
coppermine coppermine_photo_gallery 1.1_beta_2
francisco_burzi php-nuke 7.0
CVE-2005-1172 MEDIUM

Cross-site scripting (XSS) vulnerability in init.inc.php in Coppermine Photo Gallery 1.3.x allows remote attackers to inject arbitrary web script or HTML via the X-Forwarded-For parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.2.2_b
coppermine coppermine_photo_gallery 1.0_rc3
coppermine coppermine_photo_gallery 1.1_.0
coppermine coppermine_photo_gallery 1.2.1
coppermine coppermine_photo_gallery 1.2
coppermine coppermine_photo_gallery 1.1_beta_2
coppermine coppermine_photo_gallery 1.3
CVE-2005-1225 HIGH

SQL injection vulnerability in Coppermine Photo Gallery 1.3.2 allows remote attackers to execute arbitrary SQL commands via the favs parameter to (1) init.inc.php or (2) zipdownload.php.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.3.2
CVE-2005-1226 HIGH

Coppermine Photo Gallery 1.3.2 stores passwords in plaintext, which allows remote attackers to obtain sensitive information.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.3.2
CVE-2005-2676 MEDIUM

Cross-site scripting (XSS) vulnerability in displayimage.php in Coppermine Photo Gallery before 1.3.4 allows remote attackers to inject arbitrary web script or HTML via EXIF data.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.3.3
coppermine coppermine_photo_gallery 1.2.2_b
coppermine coppermine_photo_gallery 1.3.2
coppermine coppermine_photo_gallery 1.0_rc3
coppermine coppermine_photo_gallery 1.1_.0
coppermine coppermine_photo_gallery 1.2.1
coppermine coppermine_photo_gallery 1.2
coppermine coppermine_photo_gallery 1.1_beta_2
coppermine coppermine_photo_gallery 1.3
CVE-2006-0872 MEDIUM

Directory traversal vulnerability in init.inc.php in Coppermine Photo Gallery 1.4.3 and earlier allows remote attackers to include arbitrary files via a .. (dot dot) sequence and trailing NULL (%00) byte in the lang parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.4.3
CVE-2006-0873 MEDIUM

Absolute path traversal vulnerability in docs/showdocs.php in Coppermine Photo Gallery 1.4.3 and earlier allows remote attackers to include arbitrary files via the f parameter, and possibly remote files using UNC share pathnames.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.4.3
CVE-2006-1909 MEDIUM

Directory traversal vulnerability in index.php in Coppermine 1.4.4 allows remote attackers to read arbitrary files via a .//./ (modified dot dot slash) in the file parameter, which causes a regular expression to collapse the sequences into standard "../" sequences.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.4.4
CVE-2006-2514 HIGH

Coppermine galleries before 1.4.6, when running on Apache with mod_mime installed, allows remote attackers to upload arbitrary files via a filename with multiple file extensions.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.4.3
coppermine coppermine_photo_gallery 1.3.2
coppermine coppermine_photo_gallery 1.0_rc3
coppermine coppermine_photo_gallery *
coppermine coppermine_photo_gallery 1.1_beta_2
coppermine coppermine_photo_gallery 1.1.0
coppermine coppermine_photo_gallery 1.3
coppermine coppermine_photo_gallery 1.4_beta
coppermine coppermine_photo_gallery 1.3.3
coppermine coppermine_photo_gallery 1.2.2_b
coppermine coppermine_photo_gallery 1.4.2
coppermine coppermine_photo_gallery 1.4.4
coppermine coppermine_photo_gallery 1.2.1
coppermine coppermine_photo_gallery 1.2
CVE-2006-2976 HIGH

Unspecified vulnerability in usermgr.php in Coppermine Photo Gallery before 1.4.7 has unknown impact and remote attack vectors, possibly related to authorization/authentication errors.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.4.6
coppermine coppermine_photo_gallery 1.4.3
coppermine coppermine_photo_gallery 1.4.2
coppermine coppermine_photo_gallery 1.4.4
coppermine coppermine_photo_gallery 1.4.5
coppermine coppermine_photo_gallery 1.4_beta
CVE-2006-3064 HIGH

SQL injection vulnerability in the add_hit function in include/function.inc.php in Coppermine Photo Gallery (CPG) 1.4.8, when "Keep detailed hit statistics" is enabled, allows remote attackers to execute arbitrary SQL commands via the (1) referer and (2) user-agent HTTP headers.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.4.8
CVE-2008-1840 MEDIUM

SQL injection vulnerability in upload.php in Coppermine Photo Gallery (CPG) 1.4.16 and earlier allows remote authenticated users or user-assisted remote HTTP servers to execute arbitrary SQL commands via the Content-Type HTTP response header provided by the HTTP server that is used for an upload.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.4.6
coppermine coppermine_photo_gallery 1.4.7
coppermine coppermine_photo_gallery 1.4.8
coppermine coppermine_photo_gallery 1.4.9
coppermine coppermine_photo_gallery 1.4.14
coppermine coppermine_photo_gallery 1.4.3
coppermine coppermine_photo_gallery *
coppermine coppermine_photo_gallery 1.4.5
coppermine coppermine_photo_gallery 1.4
coppermine coppermine_photo_gallery 1.4.13
coppermine coppermine_photo_gallery 1.4.1
coppermine coppermine_photo_gallery 1.4.10
coppermine coppermine_photo_gallery 1.4.2
coppermine coppermine_photo_gallery 1.4.4
coppermine coppermine_photo_gallery 1.4.11
coppermine coppermine_photo_gallery 1.4.12
CVE-2008-1841 MEDIUM

SQL injection vulnerability in the session handling functionality in bridge/coppermine.inc.php in Coppermine Photo Gallery (CPG) 1.4.17 and earlier allows remote attackers to execute arbitrary SQL commands via an input field associated with the session_id variable, as exploited in the wild in April 2008. NOTE: the fix for CVE-2008-1840 was intended to address this vulnerability, but is actually inapplicable.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.4.6
coppermine coppermine_photo_gallery 1.3.5
coppermine coppermine_photo_gallery 1.2.0rc2
coppermine coppermine_photo_gallery 1.4.7
coppermine coppermine_photo_gallery 1.4.8
coppermine coppermine_photo_gallery 1.4.9
coppermine coppermine_photo_gallery 1.4.14
coppermine coppermine_photo_gallery 1.3.2
coppermine coppermine_photo_gallery 1.3.1
coppermine coppermine_photo_gallery 1.4.5
coppermine coppermine_photo_gallery 1.4.13
coppermine coppermine_photo_gallery 1.3.3
coppermine coppermine_photo_gallery 1.4.10
coppermine coppermine_photo_gallery 1.4.2
coppermine coppermine_photo_gallery 1.4.4
coppermine coppermine_photo_gallery 1.4.11
coppermine coppermine_photo_gallery 1.2.0
coppermine coppermine_photo_gallery 1.2.1
coppermine coppermine_photo_gallery 1.3.0
coppermine coppermine_photo_gallery 1.4.16
coppermine coppermine_photo_gallery 1.4.17
coppermine coppermine_photo_gallery 1.4.12
CVE-2009-1616 MEDIUM

Cross-site scripting (XSS) vulnerability in docs/showdoc.php in Coppermine Photo Gallery (CPG) before 1.4.22 allows remote attackers to inject arbitrary web script or HTML via the css parameter, a different vector than CVE-2008-0505.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
coppermine coppermine_photo_gallery 1.4.22