Vulnerabilities > CVE-2007-0836 - Remote And Local File Include vulnerability in Coppermine Photo Gallery
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
admin.php in Coppermine Photo Gallery 1.4.10, and possibly earlier, allows remote authenticated users to include arbitrary local and possibly remote files via the (1) "Path to custom header include" and (2) "Path to custom footer include" form fields. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Coppermine Photo Gallery 1.4.10 Multiple Remote And Local File Include Vulnerabilities. CVE-2007-0836. Webapps exploit for php platform |
| id | EDB-ID:29568 |
| last seen | 2016-02-03 |
| modified | 2007-02-05 |
| published | 2007-02-05 |
| reporter | anonymous |
| source | https://www.exploit-db.com/download/29568/ |
| title | Coppermine Photo Gallery 1.4.10 - Multiple Remote And Local File Include Vulnerabilities |