TUCoPS :: Web :: Apps :: b06-3222.htm

Coppermine 1.4.8~Parameter Cleanup System ByPass~Registering Global Varables
Coppermine 1.4.8~Parameter Cleanup System ByPass~Registering Global Varables
Coppermine 1.4.8~Parameter Cleanup System ByPass~Registering Global Varables


ORIGINAL ADVISORY:=0D
http://myimei.com/security/2006-06-20/coppermine-148parameter-cleanup-system-bypassregistering-global-varables.html=0D 
VENDOR INFORMED=0D
=97=97=97=97=97=97-Summary=97=97=97=97=97-=0D
Software: CPG Coppermine Photo Gallery=0D
Sowtware=92s Web Site: http://coppermine.sourceforge.net/=0D 
Versions: 1.4.8.stable=0D
Class: Remote=0D
Status: Unpatched=0D
Exploit: Available=0D
Discovered by: imei addmimistrator=0D
Risk Level: Mediume=0D
=97=97=97=97=97=96Description=97=97=97=97=97=0D
Coppermine Photo Gallery has a logical design fault that will result to bypassing anti-XSS-Injection=96RegGlobal-System.=0D
=0D
=0D
SEE ORIGINAL ADVISORY FOR MORE DETAILES

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2025 AOH