oss-sec mailing list archives

CVE request - coppermine gallery <1.4.26 code execution vulnerability


From: Hanno Böck <hanno () hboeck de>
Date: Wed, 10 Feb 2010 11:23:31 +0100

http://forum.coppermine-gallery.net/index.php/topic,63510.0.html


"The release covers a recently discovered input validation vulnerability that 
allows (if unpatched) a malevolent visitor to include own script routines"


-- 
Hanno Böck              Blog:           http://www.hboeck.de/
GPG: 3DBD3B20           Jabber/Mail:    hanno () hboeck de

http://schokokeks.org - professional webhosting

Attachment: signature.asc
Description: This is a digitally signed message part.


Current thread: