Path Disclosure Vulnerability in Coppermine Photo Gallery by Coppermine Team
CVE-2004-1984

Currently unrated

Key Information:

Vendor

Coppermine

Status
Coppermine Photo Gallery
PHP-nuke
Vendor
CVE Published:
2 May 2004

What is CVE-2004-1984?

The Coppermine Photo Gallery versions 1.2.2b and 1.2.0 RC4 are susceptible to a path disclosure vulnerability. This issue allows remote attackers to retrieve sensitive information by making direct HTTP requests to certain PHP files, including phpinfo.php, addpic.php, and config.php. Consequently, these requests may expose the server's full file paths within error messages, potentially aiding in further attacks on the system.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.osvdb.org/6495
vdb-entryx_refsource_OSVDB
http://www.osvdb.org/6500
vdb-entryx_refsource_OSVDB
http://marc.info/?l=bugtraq&m=108360247732014&w=2
mailing-listx_refsource_BUGTRAQ

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.