CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2005-3979

relocate_server.php in Coppermine Photo Gallery (CPG) 1.4.2 and 1.4 beta is not removed after installation and does not use authentication, which allows remote attackers to obtain sensitive information, such as database configuration, via a direct request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 68.6%

CVSS Severity

CVSS v2 Score 5.0

References

http://coppermine-gallery.net/forum/index.php?topic=24217.0
http://secunia.com/advisories/17855
http://www.vupen.com/english/advisories/2005/2698
http://coppermine-gallery.net/forum/index.php?topic=24217.0
http://secunia.com/advisories/17855
http://www.vupen.com/english/advisories/2005/2698

Products affected by CVE-2005-3979

Coppermine-Gallery » Coppermine Photo Gallery » Version: 1.4

cpe:2.3:a:coppermine-gallery:coppermine_photo_gallery:1.4
Coppermine-Gallery » Coppermine Photo Gallery » Version: 1.4.2

cpe:2.3:a:coppermine-gallery:coppermine_photo_gallery:1.4.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2005-3979

Products

Pricing

Contact Us