PHP Remote File Inclusion Vulnerability in Coppermine Photo Gallery by Coppermine
CVE-2004-1988

Currently unrated

Key Information:

Vendor

Coppermine

Status
Coppermine Photo Gallery
PHP-nuke
Vendor
CVE Published:
30 April 2004

What is CVE-2004-1988?

The Coppermine Photo Gallery contains a vulnerability within the init.inc.php file, allowing remote attackers to exploit a PHP remote file inclusion flaw. By manipulating the CPG_M_DIR variable, an attacker can redirect to a malicious URL that serves a compromised functions.inc.php file, enabling the execution of arbitrary PHP code on the server. This vulnerability underscores the importance of proper input validation and secure coding practices to prevent unauthorized access and code execution.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://marc.info/?l=bugtraq&m=108360247732014&w=2
mailing-listx_refsource_BUGTRAQ
http://www.waraxe.us/index.php?modname=sa&id=26
x_refsource_MISC
http://securitytracker.com/id?1010001
vdb-entryx_refsource_SECTRACK

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.