CVE-2007-0835
published 2007-02-08CVE-2007-0835: admin.php in Coppermine Photo Gallery 1.4.10, and possibly earlier, allows remote authenticated users to execute arbitrary shell commands via shell…
PriorityP426medium6.5CVSS 2.0
AVNACLAuSCPIPAP
EPSS
1.38%
68.8th percentile
admin.php in Coppermine Photo Gallery 1.4.10, and possibly earlier, allows remote authenticated users to execute arbitrary shell commands via shell metacharacters (";" semicolon) in the "Command line options for ImageMagick" form field, when used as an option to ImageMagick's convert command. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| coppermine | coppermine_photo_gallery | <= 1.4.10 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://osvdb.org/33093http://secunia.com/advisories/24019http://www.securityfocus.com/bid/22406https://exchange.xforce.ibmcloud.com/vulnerabilities/32236http://osvdb.org/33093http://secunia.com/advisories/24019http://www.securityfocus.com/bid/22406https://exchange.xforce.ibmcloud.com/vulnerabilities/32236
2007-02-08
Published