Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> CGI abuses >> Coppermine Gallery SQL injection


Vulnerability Assessment Details

Coppermine Gallery SQL injection

Vulnerability Assessment Summary
Searches for the existence of db_input.php

Detailed Explanation for this Vulnerability Assessment

The remote host is running Coppermine Gallery - a set of PHP scripts
designed to handle galleries of pictures.

This product has a vulnerability which permits a possible hacker to insert
a rogue SQL query which may permit it to view arbitrary images on this
server or even take the control of the database.

Solution : Upgrade to Coppermine 1.1 beta 3
Network Security Threat Level: Medium

Networks Security ID: 7471

Vulnerability Assessment Copyright: This script is Copyright (C) 2003 Renaud Deraison

Cables, Connectors


Dell OptiPlex 3060 MICRO DESKTOP PC COMPUTER I5 8TH GEN UP TO 32GB UP TO 2TB M.2 picture

Dell OptiPlex 3060 MICRO DESKTOP PC COMPUTER I5 8TH GEN UP TO 32GB UP TO 2TB M.2

$350.00



HP Workstation Z640 2x Xeon E5-2623V4 32GB Ram Dual 256GB SSD K420 Linux GA picture

HP Workstation Z640 2x Xeon E5-2623V4 32GB Ram Dual 256GB SSD K420 Linux GA

$214.98



Dell 14

Dell 14" TOUCHSCREN Laptop 8th Gen Core i5 16GB RAM 512GB SSD/256 Bluetooth W11

$235.00



iBUYPOWER Slate 8 MESH Gaming Desktop PC - Intel Core i7 14700F - NVIDIA GeFo... picture

iBUYPOWER Slate 8 MESH Gaming Desktop PC - Intel Core i7 14700F - NVIDIA GeFo...

$750.00



AMD Ryzen 7 7800X3D Processor (5 GHz, 8 Cores, Socket AM5), New /Sealed  picture

AMD Ryzen 7 7800X3D Processor (5 GHz, 8 Cores, Socket AM5), New /Sealed

$309.99



Intel Xeon E5-2667 V2 LGA 2011 3.3GHz 8 Core 130W 25MB 8GT/s CPU Processor picture

Intel Xeon E5-2667 V2 LGA 2011 3.3GHz 8 Core 130W 25MB 8GT/s CPU Processor

$14.99



AMD Ryzen 7 7800X3D 8-Core - 16-Thread 4.2 GHz (5.0 GHz Max Boost) Socket A... picture

AMD Ryzen 7 7800X3D 8-Core - 16-Thread 4.2 GHz (5.0 GHz Max Boost) Socket A...

$304.95



Intel Core 2 Quad Processor Q9550 2.83GHz 1333MHz (SLB8V) picture

Intel Core 2 Quad Processor Q9550 2.83GHz 1333MHz (SLB8V)

$12.50



Lenovo IdeaCentre 3 07IRB8 Desktop Intel Core i5-13400 16GB 512GB SSD W11H picture

Lenovo IdeaCentre 3 07IRB8 Desktop Intel Core i5-13400 16GB 512GB SSD W11H

$349.99



Lenovo IdeaCentre 3 27IAP7 27

Lenovo IdeaCentre 3 27IAP7 27" Touch AIO Intel Core i5-13420H 8GB 512GB SSD W11H

$399.99



Discussions

No Discussions have been posted on this vulnerability.