CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-1984

Coppermine Photo Gallery 1.2.2b and 1.2.0 RC4 allows remote attackers to obtain sensitive information via a direct HTTP request to (1) phpinfo.php, (2) addpic.php, (3) config.php, (4) db_input.php, (5) displayecard.php, (6) ecard.php, (7) crop.inc.php, which reveal the full path in a PHP error message.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 66.9%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2004-1984

Coppermine » Coppermine Photo Gallery » Version: 1.0_rc3

cpe:2.3:a:coppermine:coppermine_photo_gallery:1.0_rc3
Coppermine » Coppermine Photo Gallery » Version: 1.1_.0

cpe:2.3:a:coppermine:coppermine_photo_gallery:1.1_.0
Coppermine » Coppermine Photo Gallery » Version: 1.1_beta_2

cpe:2.3:a:coppermine:coppermine_photo_gallery:1.1_beta_2
Coppermine » Coppermine Photo Gallery » Version: 1.2

cpe:2.3:a:coppermine:coppermine_photo_gallery:1.2
Coppermine » Coppermine Photo Gallery » Version: 1.2.1

cpe:2.3:a:coppermine:coppermine_photo_gallery:1.2.1
Coppermine » Coppermine Photo Gallery » Version: 1.2.2_b

cpe:2.3:a:coppermine:coppermine_photo_gallery:1.2.2_b
Francisco Burzi » Php-Nuke » Version: 6.9

cpe:2.3:a:francisco_burzi:php-nuke:6.9
Francisco Burzi » Php-Nuke » Version: 7.0

cpe:2.3:a:francisco_burzi:php-nuke:7.0
Francisco Burzi » Php-Nuke » Version: 7.0_final

cpe:2.3:a:francisco_burzi:php-nuke:7.0_final
Francisco Burzi » Php-Nuke » Version: 7.1

cpe:2.3:a:francisco_burzi:php-nuke:7.1
Francisco Burzi » Php-Nuke » Version: 7.2

cpe:2.3:a:francisco_burzi:php-nuke:7.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-1984

Products

Pricing

Contact Us