Vulnerabilities > CVE-2007-1107 - Unspecified vulnerability in Coppermine Photo Gallery

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
coppermine
exploit available
NVD
Published: 2007-02-26
Updated: 2024-11-21

Summary

SQL injection vulnerability in thumbnails.php in Coppermine Photo Gallery (CPG) 1.3.x allows remote authenticated users to execute arbitrary SQL commands via a cpg131_fav cookie. NOTE: it was later reported that 1.4.10, 1.4.14, and other 1.4.x versions are also affected using similar cookies.

Vulnerable Configurations

Part Description Count
Application
Coppermine
4

Exploit-Db

  • descriptionCoppermine Photo Gallery 1.3.x Remote Blind SQL Injection Exploit. CVE-2007-1107. Webapps exploit for php platform
    fileexploits/php/webapps/3371.php
    idEDB-ID:3371
    last seen2016-01-31
    modified2007-02-24
    platformphp
    port
    published2007-02-24
    reporters0cratex
    sourcehttps://www.exploit-db.com/download/3371/
    titleCoppermine Photo Gallery 1.3.x - Remote Blind SQL Injection Exploit
    typewebapps
  • idEDB-ID:4950
  • idEDB-ID:4961

References