Sensitive Information Disclosure in Coppermine Photo Gallery 1.5.12
CVE-2011-3722

Currently unrated

Key Information:

Vendor: Coppermine-gallery
Status: Coppermine Photo Gallery
Vendor: CVE Published:; 23 September 2011

🔔 Create Coppermine-gallery Vulnerability Alert

What is CVE-2011-3722?

Coppermine Photo Gallery version 1.5.12 contains a vulnerability that allows remote attackers to access sensitive information. By sending direct requests to certain PHP files, such as include/inspekt.php, attackers can exploit this vulnerability to reveal the installation path through detailed error messages. This poses a risk as it may aid in subsequent attacks against the application.

References

http://code.google.com/p/inspathx/source/browse/trunk/pat...

x_refsource_MISC

http://www.openwall.com/lists/oss-security/2011/06/27/6

mailing-listx_refsource_MLIST

http://code.google.com/p/inspathx/source/browse/trunk/pat...

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Sep 23, 2011

JSON