Описание
Directory traversal vulnerability in viewlog.php in Coppermine Photo Gallery (CPG) 1.4.12 and earlier allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the log parameter.
Directory traversal vulnerability in viewlog.php in Coppermine Photo Gallery (CPG) 1.4.12 and earlier allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the log parameter.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2007-4976
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36660
- http://coppermine-gallery.net/forum/index.php?topic=46847.0
- http://osvdb.org/37101
- http://secunia.com/advisories/26843
- http://securityreason.com/securityalert/3152
- http://www.securityfocus.com/archive/1/479757/100/0/threaded
- http://www.securityfocus.com/bid/25698
- http://www.securitytracker.com/id?1018704
- http://www.vupen.com/english/advisories/2007/3194
Связанные уязвимости
nvd
больше 18 лет назад
Directory traversal vulnerability in viewlog.php in Coppermine Photo Gallery (CPG) 1.4.12 and earlier allows remote authenticated administrators to include and execute arbitrary local files via a .. (dot dot) in the log parameter.