Open Redirect Vulnerability in Coppermine Photo Gallery by Coppermine Development Team
CVE-2015-3922

Currently unrated

Key Information:

Vendor: Coppermine-gallery
Status: Coppermine Photo Gallery
Vendor: CVE Published:; 27 May 2015

🔔 Create Coppermine-gallery Vulnerability Alert

What is CVE-2015-3922?

An open redirect vulnerability exists in the mode.php file of Coppermine Photo Gallery prior to version 1.5.36. This flaw allows remote attackers to manipulate the 'referer' parameter, enabling them to redirect users to arbitrary external sites. Such behavior can be exploited to carry out phishing attacks, potentially compromising user credentials and sensitive information.

References

http://packetstormsecurity.com/files/132004/Coppermine-Ga...

x_refsource_MISC

http://www.securityfocus.com/bid/74869

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1032558

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 27, 2015
Vulnerability Reserved
May 12, 2015

JSON