CVE-2007-0122 in Photo Galleryinfo

Summary

Multiple SQL injection vulnerabilities in Coppermine Photo Gallery 1.4.10 and earlier allow remote authenticated administrators to execute arbitrary SQL commands via (1) the cat parameter to albmgr.php, and possibly (2) the gid parameter to usermgr.php; (3) the start parameter to db_ecard.php; and the albumid parameter to unspecified files, related to the (4) filename_to_title and (5) del_titles functions.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

01/08/2007

Disclosure

01/08/2007

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-89 (Confirmed)

Exploit

Download

CVSS

6.3

EPSS

0.02440

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2007-0122
NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-0122
CVE Details	https://www.cvedetails.com/cve/CVE-2007-0122/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!