CVE-2007-1414 Information

Feb 14, 2021 cve

Description

Multiple PHP remote file inclusion vulnerabilities in Coppermine Photo Gallery (CPG) allow remote attackers to execute arbitrary PHP code via a URL in the (1) cmd parameter to (a) image_processor.php or (b) picmgmt.inc.php or the (2) path parameter to (c) include/functions.php (d) include/plugin_api.inc.php (e) index.php or (f) pluginmgr.php.

Reference

http://securityreason.com/securityalert/2416 http://www.osvdb.org/35065 http://www.osvdb.org/35066 http://www.osvdb.org/35067 http://www.osvdb.org/35068 http://www.osvdb.org/35069 http://www.osvdb.org/35070 http://www.securityfocus.com/archive/1/462322/100/0/threaded http://www.securityfocus.com/archive/1/463532/100/0/threaded http://www.securityfocus.com/bid/22896 https://exchange.xforce.ibmcloud.com/vulnerabilities/32894

Share on: