exploits , vulnerabilities , articles , Coppermine Photo Gallery Multiple Remote File Include Vulnerabilities

Title	Coppermine Photo Gallery Multiple Remote File Include Vulnerabilities
Published	2007-03-09-12:00AM
Updated	2007-03-09-06:05PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	Hasadya Raed is credited with the discovery of these vulnerabilities.
Vulnerable	Coppermine Photo Gallery 1.4.10
Not Vulnerable
Code	Attackers can use a browser to exploit this issue. Example URIs have been provided: http://www.example.com/Script_Path/image_processor.php?cmd=[Shell-Attack] http://www.example.com/Script_Path/include/functions.php?path=[Shell-Attack] http://www.example.com/Script_Path/include/picmgmt.inc.php?cmd=[Shell-Attack] http://www.example.com/Script_Path/include/plugin_api.inc.php?path=[Shell-Attack] http://www.example.com/Script_Path/index.php?path=[Shell-Attack] http://www.example.com/Script_Path/pluginmgr.php?path=[Shell-Attack]
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-11 Symantec Veritas VRTSweb Incoming Data Remote Code Execution Vulnerability
2009-12-11 HP OpenView Network Node Manager Perl CGI Executables Remote Code Execution Vulnerability
2009-12-11 HP OpenView Network Node Manager Unspecified Stack Buffer Overflow Vulnerability
2009-12-11 Joomla! JS Jobs Component Multiple SQL Injection Vulnerabilities
2009-12-11 RT Session Fixation Vulnerability
2009-12-11 Multiple HP LaserJet Printers Unauthorized Access and Denial of Service Vulnerability
2009-12-11 Sun Ray Server Authentication Manager Remote Code Execution Vulnerability
2009-12-10 GNU Coreutils Insecure Temporary File Creation Vulnerability
2009-12-10 WebKit SVG Animation Elements User After Free Remote Code Execution Vulnerability
2009-12-10 Moodle Multiple Vulnerabilities

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Sat, 12 Dec 2009 04:05:24 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
Www.juliap Www.juliap DAVID Www. sexg recode news for c Www.bollyw news for c freebsd ap joomla 1.0 Www sex co n...d.php? news for c 200 /compo exbb 1.9.1 Limp bizki Www full s t792t 200 /compo www tamil In bed roo card.y6608 Phtoo 8307_126.j news for c www tamil search/exp Www baztab ...2Fmake ccpop gbook.php2 www.mai139 Www ayu az cisco secu Www.Hotxxx Www.sex in IISWebAgen 2.2.2. CMS is Fre Www Trisha news for c www.mai139 adult wall CMS is Fre Microsoft news for c ESMTP 5.0. Www+hot+vi FrontPage/ www.mai139