Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in menu.inc.php in Coppermine Photo Gallery 1.2.2b allows remote attackers to inject arbitrary HTML or web script via the CPG_URL parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Coppermine Photo Gallery 多个输入验证漏洞
Vulnerability Description
Coppermine Photo Gallery是一款基于WEB的图形库管理程序。 Coppermine Photo Gallery多处对用户提交的输入缺少充分过滤,远程攻击者可以利用这些漏洞执行任意命令,获得COOKIE数据,获得敏感文件路径等信息。 具体问题如下: 1、路径泄露: 直接访问一些配置脚本,可获得敏感路径信息。 2、跨站脚本攻击 coppermine/docs/menu.inc.php'对用户提交URI缺少过滤,攻击者利用这个漏洞可获得敏感信息。 3、任意目录浏览: 如果有PHP-Nuke
CVSS Information
N/A
Vulnerability Type
N/A