Vulnerabilities > Coppermine > Coppermine Photo Gallery > 1.0

DATE	CVE	VULNERABILITY TITLE	RISK
2007-01-09	CVE-2007-0122	SQL Injection vulnerability in Coppermine Photo Gallery Albmgr.PHP Multiple SQL injection vulnerabilities in Coppermine Photo Gallery 1.4.10 and earlier allow remote authenticated administrators to execute arbitrary SQL commands via (1) the cat parameter to albmgr.php, and possibly (2) the gid parameter to usermgr.php; (3) the start parameter to db_ecard.php; and the albumid parameter to unspecified files, related to the (4) filename_to_title and (5) del_titles functions. network low complexity coppermine	6.5
2006-08-24	CVE-2006-4321	Remote File Include vulnerability in Coppermine Photo Gallery 1.0 PHP remote file inclusion vulnerability in cpg.php in the Coppermine Photo Gallery component (com_cpg) 1.0 and earlier for Mambo allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter. network low complexity coppermine	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.