CVE-2006-5622

Coppermine Photo Gallery - SQL Injection

Title source: rule

Description

SQL injection vulnerability in picmgr.php in Coppermine Photo Gallery 1.4.9 allows remote attackers to execute arbitrary SQL commands via the aid parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by w4ck1ng · phpwebappsphp

https://www.exploit-db.com/exploits/2660

View Code ZIP pw:eip

References (5)

[Patch] http://coppermine-gallery.net/forum/index.php?topic=37895.0

[Patch, Vendor Advisory] http://secunia.com/advisories/22625

[Exploit] http://www.securityfocus.com/bid/20774

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/2660

[Third Party Advisory] http://www.vupen.com/english/advisories/2006/4226

Scores

EPSS 0.0158

EPSS Percentile 81.7%

Details

Status published

Products (1)

coppermine/coppermine_photo_gallery 1.4.9

Published Oct 31, 2006

Tracked Since Feb 18, 2026