Access Control Flaw in Coppermine Photo Gallery 1.4.14
CVE-2008-7186

Currently unrated

Key Information:

Vendor: Coppermine-gallery
Status: Coppermine Photo Gallery
Vendor: CVE Published:; 9 September 2009

🔔 Create Coppermine-gallery Vulnerability Alert

What is CVE-2008-7186?

The vulnerability in Coppermine Photo Gallery version 1.4.14 arises from insufficient access control measures in the 'update.php' file. This flaw enables remote attackers to execute unauthorized requests that can disclose sensitive information, including the database table prefix. Exploiting this vulnerability could potentially aid in launching further attacks, including one linked to a previous vulnerability (CVE-2008-0504). It is essential for users to implement the necessary security updates and restrict access to this file.

References

http://www.waraxe.us/advisory-66.html

x_refsource_MISC

http://www.securityfocus.com/archive/1/487351/100/200/thr...

mailing-listx_refsource_BUGTRAQ

http://www.securitytracker.com/id?1019285

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 9, 2009
Vulnerability Reserved
Sep 9, 2009

JSON