Clan Adverts

www.idevaffiliate.com/31216/idevaffiliate.php?id=203_0_1_3

  Coppermine Photo Gallery Two SQL Injection Vulnerabilities

Posted on Saturday, June 30, 2007 @ 06:19 by floppy
SECUNIA ADVISORY ID: SA25846

VERIFY ADVISORY: http://secunia.com/advisories/25846/

CRITICAL: Moderately critical

IMPACT: Manipulation of data, Exposure of sensitive information

WHERE: >From remote

SOFTWARE: Coppermine Photo Gallery 1.x - http://secunia.com/product/1427/

DESCRIPTION: Two vulnerabilities have been reported in Coppermine Photo Gallery, which can be exploited by malicious people and malicious users to conduct SQL injection attacks. The vulnerabilities are reported in version 1.4.10. Prior versions may also be affected.



1) Input passed to the album password cookie in unspecified scripts is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. Successful exploitation allows retrieval of unspecified sensitive information.

2) Input passed to the "cat" parameter in albmgr.php is not properly sanitised before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. Successful exploitation of this vulnerability allows retrieval of usernames and password hashes, but requires valid administrator credentials.

SOLUTION: Update to version 1.4.11.

PROVIDED AND/OR DISCOVERED BY:
1) Reported by the vendor.
2) DarkFig

ORIGINAL ADVISORY:
1) http://coppermine-gallery.net/forum/index.php?topic=44845.0
2) http://milw0rm.com/exploits/3085

Quick Searches

Related Articles

**IMPORTANT** vWar Vulnerability Discovered!!!
**Fixed** VWar invulnerability and New Protection Methods
Coppermine Photo Gallery Two SQL Injection Vulnerabilities
**IMPORTANT** PHPNuke Platinum Exploit
NSN Supporters Exploit Fix

The comments below belong to their respectful owners, Clan Themes can not be held responsible for any of the below comments. You also read the below comments at your own choice.

floppy

floppy writes 
I would be willing to be the security hole exist in the nuke module version also along with other undiscovered holes.
Saturday, June 30, 2007 @ 06:22

Ped

Ped writes 
I would be willing to be the security hole exist in the nuke module version also along with other undiscovered holes.
What does that mean ?

I used to like coppermine but i have seen a few security issues, It would be nice if some one took on the challenge to fix all the problems.
Saturday, July 07, 2007 @ 05:22

hobodude666

hobodude666 writes 
I think he means he will stop security holes whenever they pop up.
Unless it means he will create them which i doubt lol
Tuesday, July 31, 2007 @ 01:05

Comments Closed for this Article!
Comments are always closed 1 month after the article has been published.
 

  Farcry 2 News


Farcry 2 News

  Article Rating

Average Score: 4.38
Votes: 13


Please take a second and vote for this article:

Excellent
Very Good
Good
Regular
Bad