Description

Coppermine Photo Gallery (CPG) 1.4.14 allows remote attackers to obtain sensitive information via a direct request to include/slideshow.inc.php, which leaks the installation path in an error message.

Remediation

References

CVE-2008-7187

Related Vulnerabilities

WordPress Plugin Photo Gallery by Ays-Responsive Image Gallery SQL Injection (4.4.3)

Liferay Portal Incorrect Authorization Vulnerability (CVE-2021-33335)

WordPress Plugin Mimetic Books Cross-Site Scripting (0.2.13)

Oracle Database Server CVE-2014-4292 Vulnerability (CVE-2014-4292)

OpenSSL Excessive Iteration Vulnerability (CVE-2023-3817)

Severity

Medium

Classification

CVE-2008-7187 CWE-200

Tags

Missing Update Known Vulnerabilities