Categories

Applications (222)
Blogs (7)
Content Management (148)
Customer Relationship (2)
Discussion Boards (29)
E-Commerce (14)
General Purpose Directories (2)
Image Galleries (18)
Mailing Lists (1)
Tips (3)
Vulnerabilities (337)
Access Bypass (50)
Cross Site Scripting (123)
Denial Of Service (2)
File Inclusion (51)
Information Disclosure (15)
Privilege Escalation (2)
Remote Command Execution (16)
Session Hijacking (2)
SQL Injection (130)
« Mambo Component AkoBook Scripts Insertion
TinyWebGallery Multiple URL XSS »

Coppermine XSS and Local File Inclusion

Published by David September 20th, 2007 in Cross Site Scripting.

Application: Coppermine
Affected Version: 1.4.12 and prior version
Vendor’s URL: http://coppermine-gallery.net/
Bug Type: Cross Site Scripting & Exposure of system information
Risk Level: Medium

Solution:
Update to version 1.4.13.

0 Responses to “Coppermine XSS and Local File Inclusion”

Feed for this Entry Trackback Address
  1. No Comments

Leave a Reply

You must login to post a comment.

« Mambo Component AkoBook Scripts Insertion
TinyWebGallery Multiple URL XSS »

Subscribe

Latest

Archives



Valid XHTML 1.0 Transitional