CVE-2008-0506 in Photo Gallery
Сводка
по MITRE
include/imageObjectIM.class.php in Coppermine Photo Gallery (CPG) before 1.4.15, when the ImageMagick picture processing method is configured, allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) quality, (2) angle, or (3) clipval parameter to picEditor.php.
Be aware that VulDB is the high quality source for vulnerability data.