CGI abuses : Coppermine Photo Gallery Albmgr.PHP SQL Injection

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.58048

Categoría: CGI abuses

Título: Coppermine Photo Gallery Albmgr.PHP SQL Injection

Resumen: NOSUMMARY

Descripción: Description:

The remote version of Coppermine Photo Gallery, according to
its version number, is vulnerable to a number of SQL injection
attacks as a result of improper sanitization of user supplied
input tot he 'Albmgr.PHP' script.

Versions up to 1.4.10 are known to be vulnerable.

Solution : Upgrade to a later version.

Risk factor : High

CVSS Score:
6.5

Referencia Cruzada: BugTraq ID: 21894
Common Vulnerability Exposure (CVE) ID: CVE-2007-0122
http://www.securityfocus.com/bid/21894
Bugtraq: 20070105 Coppermine Photo Gallery <= 1.4.10 SQL Injection Exploit (Google Search)
http://www.securityfocus.com/archive/1/456051/100/0/threaded
https://www.exploit-db.com/exploits/3085
http://acid-root.new.fr/poc/19070104.txt
http://osvdb.org/35852
http://osvdb.org/35853
http://osvdb.org/35854
http://osvdb.org/35855
http://osvdb.org/35856
http://secunia.com/advisories/25846
http://securityreason.com/securityalert/2123

Copyright Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.58048
Categoría:	CGI abuses
Título:	Coppermine Photo Gallery Albmgr.PHP SQL Injection
Resumen:	NOSUMMARY
Descripción:	Description: The remote version of Coppermine Photo Gallery, according to its version number, is vulnerable to a number of SQL injection attacks as a result of improper sanitization of user supplied input tot he 'Albmgr.PHP' script. Versions up to 1.4.10 are known to be vulnerable. Solution : Upgrade to a later version. Risk factor : High CVSS Score: 6.5
Referencia Cruzada:	BugTraq ID: 21894 Common Vulnerability Exposure (CVE) ID: CVE-2007-0122 http://www.securityfocus.com/bid/21894 Bugtraq: 20070105 Coppermine Photo Gallery <= 1.4.10 SQL Injection Exploit (Google Search) http://www.securityfocus.com/archive/1/456051/100/0/threaded https://www.exploit-db.com/exploits/3085 http://acid-root.new.fr/poc/19070104.txt http://osvdb.org/35852 http://osvdb.org/35853 http://osvdb.org/35854 http://osvdb.org/35855 http://osvdb.org/35856 http://secunia.com/advisories/25846 http://securityreason.com/securityalert/2123
Copyright	Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com