CVE-2007-3558

Published: Jul 4, 2007Modified: Apr 23, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

SQL injection vulnerability in Coppermine Photo Gallery (CPG) before 1.4.11 allows remote attackers to execute arbitrary SQL commands via an album password cookie to an unspecified component.

Affected (1)

Products: Coppermine: Coppermine Photo Gallery

Coppermine

1 product

Coppermine Photo Gallery

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Coppermine Coppermine Photo Gallery	Up to 1.4.10

References (6)

http://coppermine-gallery.net/forum/index.php?topic=44845.0

Source: cve@mitre.org

Patch

http://secunia.com/advisories/25846

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/24710

Source: cve@mitre.org

Patch

http://coppermine-gallery.net/forum/index.php?topic=44845.0

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://secunia.com/advisories/25846

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/24710

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

Timeline

No history available yet.