Description

Directory traversal vulnerability in the user_get_profile function in include/functions.inc.php in Coppermine Photo Gallery (CPG) 1.4.18 and earlier, when the charset is utf-8, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang part of serialized data in an _data cookie.

Remediation

References

CVE-2008-3486

Related Vulnerabilities

Django Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2011-0696)

WordPress Plugin All-In-One Security (AIOS)-Security and Firewall Cross-Site Request Forgery (3.8.9)

WordPress Plugin Ultimate Addons for Visual Composer Multiple Vulnerabilities (3.16.10)

Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-38265)

Oracle Application Server Other Vulnerability (CVE-2006-5365)

Severity

High

Classification

CVE-2008-3486 CWE-22

Tags

Missing Update Known Vulnerabilities