|
Family: CGI abuses --> Category: infos
Coppermine Gallery SQL injection Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of db_input.php
Detailed Explanation for this Vulnerability Test
The remote host is running Coppermine Gallery - a set of PHP scripts
designed to handle galleries of pictures.
This product has a vulnerability which allows a possible hacker to insert
a rogue SQL query which may allow it to view arbitrary images on this
server or even take the control of the database.
Solution : Upgrade to Coppermine 1.1 beta 3
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|