Sign-up

ID

VAR-200404-0075


CVE

CVE-2004-1985


TITLE

Coppermine Photo Gallery Multiple input validation vulnerabilities

Trust: 0.6

sources: CNNVD: CNNVD-200404-101

DESCRIPTION

Cross-site scripting (XSS) vulnerability in menu.inc.php in Coppermine Photo Gallery 1.2.2b allows remote attackers to inject arbitrary HTML or web script via the CPG_URL parameter. Coppermine Photo Gallery is a WEB-based graphics library management program. Coppermine Photo Gallery does not fully filter the input submitted by users in many places. Remote attackers can use these vulnerabilities to execute arbitrary commands, obtain COOKIE data, and obtain sensitive file paths and other information. The specific issues are as follows: 1. Path leakage: By directly accessing some configuration scripts, sensitive path information can be obtained. 2. Cross-site scripting attack coppermine/docs/menu.inc.php\'\' lacks filtering for user submitted URIs, attackers can use this vulnerability to obtain sensitive information. 3. Browse any directory: If you have PHP-Nuke administrator privileges, you can bypass directory restrictions to access other files by accessing the coppermine module. 4. Arbitrary command execution: If you have PHP-Nuke administrator privileges to access the coppermine module, you can enter the SHELL command in some parameters of the coppermine configuration panel, and execute it with WEB process privileges

Trust: 0.99

sources: NVD: CVE-2004-1985 // VULHUB: VHN-10413

AFFECTED PRODUCTS

vendor:copperminemodel:photo galleryscope:eqversion:1.2.1

Trust: 1.6

vendor:copperminemodel:photo galleryscope:eqversion:1.1_beta_2

Trust: 1.6

vendor:copperminemodel:photo galleryscope:eqversion:1.0_rc3

Trust: 1.6

vendor:copperminemodel:photo galleryscope:eqversion:1.1_.0

Trust: 1.6

vendor:copperminemodel:photo galleryscope:eqversion:1.2

Trust: 1.6

vendor:copperminemodel:photo galleryscope:eqversion:1.2.2_b

Trust: 1.6

vendor:francisco burzimodel:php-nukescope:eqversion:7.1

Trust: 1.0

vendor:francisco burzimodel:php-nukescope:eqversion:7.2

Trust: 1.0

vendor:francisco burzimodel:php-nukescope:eqversion:6.9

Trust: 1.0

vendor:francisco burzimodel:php-nukescope:eqversion:7.0_final

Trust: 1.0

vendor:francisco burzimodel:php-nukescope:eqversion:7.0

Trust: 1.0

sources: CNNVD: CNNVD-200404-101 // NVD: CVE-2004-1985

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2004-1985
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-200404-101
value: MEDIUM

Trust: 0.6

VULHUB: VHN-10413
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2004-1985
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-10413
severity: MEDIUM
baseScore: 4.3
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 8.6
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-10413 // CNNVD: CNNVD-200404-101 // NVD: CVE-2004-1985

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2004-1985

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200404-101

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-200404-101

EXPLOIT AVAILABILITY

sources:
            
            
            VULHUB: VHN-10413

EXTERNAL IDS
db:OSVDBid:5757
Trust: 1.7
db:NVDid:CVE-2004-1985
Trust: 1.7
db:SECUNIAid:11524
Trust: 1.7
db:BIDid:10253
Trust: 1.7
db:CNNVDid:CNNVD-200404-101
Trust: 0.7
db:BUGTRAQid:20040502 [WARAXE-2004-SA#026 - MULTIPLE VULNERABILITIES IN COPPERMINE PHOTO GALLERY FOR PHPNUKE]
Trust: 0.6
db:XFid:16040
Trust: 0.6
db:EXPLOIT-DBid:24072
Trust: 0.1
db:SEEBUGid:SSVID-77810
Trust: 0.1
db:VULHUBid:VHN-10413
Trust: 0.1
sources:
            
            
            VULHUB: VHN-10413 // 
            
            
            
            CNNVD: CNNVD-200404-101 // 
            
            
            
            NVD: CVE-2004-1985

REFERENCES
url:http://www.securityfocus.com/bid/10253
Trust: 1.7
url:http://www.osvdb.org/5757
Trust: 1.7
url:http://secunia.com/advisories/11524
Trust: 1.7
url:http://www.waraxe.us/index.php?modname=sa&id=26
Trust: 1.6
url:https://exchange.xforce.ibmcloud.com/vulnerabilities/16040
Trust: 1.1
url:http://marc.info/?l=bugtraq&m=108360247732014&w=2
Trust: 1.0
url:http://xforce.iss.net/xforce/xfdb/16040
Trust: 0.6
url:http://marc.theaimsgroup.com/?l=bugtraq&m=108360247732014&w=2
Trust: 0.6
url:http://marc.info/?l=bugtraq&m=108360247732014&w=2
Trust: 0.1
url:http://www.waraxe.us/index.php?modname=sa&id=26
Trust: 0.1
sources:
            
            
            VULHUB: VHN-10413 // 
            
            
            
            CNNVD: CNNVD-200404-101 // 
            
            
            
            NVD: CVE-2004-1985

CREDITS
Janek Vind※ come2waraxe@yahoo.com
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-200404-101

SOURCES
db:VULHUBid:VHN-10413
db:CNNVDid:CNNVD-200404-101
db:NVDid:CVE-2004-1985

LAST UPDATE DATE
2024-08-14T13:51:17.242000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-10413date:2017-07-11T00:00:00
db:CNNVDid:CNNVD-200404-101date:2005-10-20T00:00:00
db:NVDid:CVE-2004-1985date:2017-07-11T01:31:31.590

SOURCES RELEASE DATE
db:VULHUBid:VHN-10413date:2004-04-30T00:00:00
db:CNNVDid:CNNVD-200404-101date:2004-04-30T00:00:00
db:NVDid:CVE-2004-1985date:2004-04-30T04:00:00