Directory Enumeration Vulnerability in Coppermine Photo Gallery by Coppermine
CVE-2015-3923

Currently unrated

Key Information:

Vendor: Coppermine-gallery
Status: Coppermine Photo Gallery
Vendor: CVE Published:; 10 June 2015

🔔 Create Coppermine-gallery Vulnerability Alert

What is CVE-2015-3923?

The Coppermine Photo Gallery before version 1.5.36 is susceptible to a directory enumeration vulnerability. Remote attackers can exploit this weakness by manipulating the 'folder' parameter in the minibrowser.php script, which may allow them to access and enumerate directories on the server. This exploitation could lead to unauthorized information disclosure and facilitate further attacks on the web application.

References

http://www.securityfocus.com/bid/75140

vdb-entryx_refsource_BID

http://packetstormsecurity.com/files/132004/Coppermine-Ga...

x_refsource_MISC

http://www.securitytracker.com/id/1032558

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 10, 2015
Vulnerability Reserved
May 12, 2015

JSON