CVE-2007-0122

Coppermine Photo Gallery < 1.4.10 - Authenticated SQL Injection via Multiple Parameters

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2007-0122. PoCs published by DarkFig.

AI-analyzed exploit summary This PHP script exploits a SQL injection vulnerability in Coppermine Photo Gallery <= 1.4.10 by injecting a UNION-based query to retrieve user credentials from the database. It includes authentication handling and proxy support for evasion.

Description

Multiple SQL injection vulnerabilities in Coppermine Photo Gallery 1.4.10 and earlier allow remote authenticated administrators to execute arbitrary SQL commands via (1) the cat parameter to albmgr.php, and possibly (2) the gid parameter to usermgr.php; (3) the start parameter to db_ecard.php; and the albumid parameter to unspecified files, related to the (4) filename_to_title and (5) del_titles functions.

Exploits (2)

exploitdb WORKING POC VERIFIED
by DarkFig · phpwebappsphp
https://www.exploit-db.com/exploits/3085

This PHP script exploits a SQL injection vulnerability in Coppermine Photo Gallery <= 1.4.10 by injecting a UNION-based query to retrieve user credentials from the database. It includes authentication handling and proxy support for evasion.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Coppermine Photo Gallery <= 1.4.10
Auth required
Prerequisites: Valid admin credentials · Target URL · Proxy details (optional)
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by DarkFig · phpwebappsphp
https://www.exploit-db.com/exploits/29397

This exploit targets an SQL injection vulnerability in Coppermine Photo Gallery versions prior to 1.4.11. It retrieves user credentials by injecting a malicious SQL query through the 'cat' parameter in albmgr.php.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Coppermine Photo Gallery <= 1.4.10
Auth required
Prerequisites: Valid admin credentials · Target URL with vulnerable Coppermine installation
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (11)

Core 11
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/35853
Various Sources x_refsource_misc
http://acid-root.new.fr/poc/19070104.txt
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/35854
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/2123
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/25846
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/3085
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/35852
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/456051/100/0/threaded
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/21894
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/35856
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/35855

Scores

EPSS 0.0302
EPSS Percentile 85.7%

Details

Status published
Products (15)
coppermine/coppermine_photo_gallery 1.0
coppermine/coppermine_photo_gallery 1.0_rc3
coppermine/coppermine_photo_gallery 1.1
coppermine/coppermine_photo_gallery 1.1_beta_2
coppermine/coppermine_photo_gallery 1.2
coppermine/coppermine_photo_gallery 1.2.1
coppermine/coppermine_photo_gallery 1.2.2_b
coppermine/coppermine_photo_gallery 1.2.2_b-nuke
coppermine/coppermine_photo_gallery 1.3
coppermine/coppermine_photo_gallery 1.3.2
... and 5 more
Published Jan 09, 2007
Tracked Since Feb 18, 2026