exploits , vulnerabilities , articles , Coppermine Photo Gallery Multiple Input Validation Vulnerabilities

Title	Coppermine Photo Gallery Multiple Input Validation Vulnerabilities
Published	2007-09-17-12:00AM
Updated	2007-09-18-07:30PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	L4teral is credited with discovering these vulnerabilities.
Vulnerable	Coppermine Photo Gallery 1.4.12 Coppermine Photo Gallery 1.4.11 Coppermine Photo Gallery 1.4.10 Coppermine Photo Gallery 1.4.9 Coppermine Photo Gallery 1.4.4 Coppermine Photo Gallery 1.4.2 Coppermine Photo Gallery 1.4
Not Vulnerable	Coppermine Photo Gallery 1.4.13
Code	To exploit the cross-site scripting issue, an attacker must entice an unsuspecting victim into following a malicious URI. An attacker can exploit the local file-include issue through a browser.The following proof-of-concept URIs are available:http://www.example.com/cpg/mode.php?admin_mode=1&referer=javascript:alert(document.cookie) http://localhost/cpg/viewlog.php?log=../../../../../../../../../etc/passwd%00
TXT

Vulnerabilities - newest 10 RSS | More

2009-12-11 Symantec Veritas VRTSweb Incoming Data Remote Code Execution Vulnerability
2009-12-11 HP OpenView Network Node Manager Perl CGI Executables Remote Code Execution Vulnerability
2009-12-11 HP OpenView Network Node Manager Unspecified Stack Buffer Overflow Vulnerability
2009-12-11 Joomla! JS Jobs Component Multiple SQL Injection Vulnerabilities
2009-12-11 RT Session Fixation Vulnerability
2009-12-11 Multiple HP LaserJet Printers Unauthorized Access and Denial of Service Vulnerability
2009-12-11 Sun Ray Server Authentication Manager Remote Code Execution Vulnerability
2009-12-10 GNU Coreutils Insecure Temporary File Creation Vulnerability
2009-12-10 WebKit SVG Animation Elements User After Free Remote Code Execution Vulnerability
2009-12-10 Moodle Multiple Vulnerabilities

SECURITY RSS FEEDS

Advertising

Copyright 2007, SecurityDot
Sat, 12 Dec 2009 09:11:57 +0000

Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS EXPLOITS VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
Freesexpho videodenoh www.vidio thrisha http://www WwwKeralas www.sexiph CMS is Fre www.bustyw Freesexpho Erotik SEX photo www.shouji CMS is Fre CMS is Fre trisha sex needbang.c www.92nice mznews hot sexy r trisha sex news for c Intel CMS is Fre SEX200 CMS is Fre hoang thuy alan++sex+ CMS is Fre Xs Www.hot as www.xnxx.c Crack Data www.sexiph www.sexygi turk do /?GLOBA CMS is Fre videodenoh 200 /compo peafshin Japanesewh videodenoh 200 /compo mambo+Remo 200+%252Fc CMS is Fre Japanesewh Sex vedios www.worlds