CVE-2004-1987Photo Gallery vulnerability

3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.3%
top 48.08%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Coppermine Photo GalleryFrancisco Burzi Php-nuke
Timeline
PublishedApr 30
Latest updateApr 29

Description

picmgmtbatch.inc.php in Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote attackers with administrative privileges to execute arbitrary commands via shell metacharacters in the (1) $CONFIG['impath'] or (2) $CONFIG['jpeg_qual'] parameters.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

NVDfrancisco_burzi/php-nuke5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-v3ww-wfpr-x46c: picmgmtbatch2022-04-29
CVEList
CVE-2004-1987: picmgmtbatch2005-05-10
CVE-2004-1987 — Coppermine Photo Gallery vulnerability | cvebase