SQL injection in Coppermine Photo Gallery

Published: 2008-04-11 00:00:00 | Updated: 2017-03-21 13:26:39
Severity High
Patch available YES
Number of vulnerabilities 1
CVSSv2 5.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
CVSSv3 6.3 [CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C]
CVE ID CVE-2008-1840
CWE ID CWE-89
Exploitation vector Network
Public exploit Not available
Vulnerable software Coppermine Photo Gallery
Vulnerable software versions Coppermine Photo Gallery 1.2.0
Coppermine Photo Gallery 1.2.1
Coppermine Photo Gallery 1.3.0
Show more
Vendor URL Coppermine Photo Gallery
Advisory type Public

Security Advisory

1) SQL injection

Description

The vulnerability allows a remote attacker to execute arbitrary SQL commands in web application database.

The vulnerability exists due to insufficient sanitization of user-supplied data passed via cookies to "coppermine.upload.php" script. A remote attacker can send a specially crafted HTTP request to vulnerable script during URI/URL uploads and execute arbitrary SQL queries in backend database.

Successful exploitation of the vulnerability may result in website compromise.

Remediation

Upgrade to the latest version of Coppermine Photo Gallery (1.4.17 or later).
https://sourceforge.net/projects/coppermine/files/

External links

https://exchange.xforce.ibmcloud.com/vulnerabilities/41784

Back to List