CVE-2007-1107

Coppermine Photo Gallery <1.4 - SQL Injection

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2007-1107. PoCs published by RST/GHC, bazik, s0cratex.

AI-analyzed exploit summary This exploit targets a SQL injection vulnerability in Coppermine Photo Gallery (CPG) 1.4.10 via cookie manipulation. It uses blind SQL injection to extract admin credentials by leveraging the 'album' parameter and serialized cookie data.

Description

SQL injection vulnerability in thumbnails.php in Coppermine Photo Gallery (CPG) 1.3.x allows remote authenticated users to execute arbitrary SQL commands via a cpg131_fav cookie. NOTE: it was later reported that 1.4.10, 1.4.14, and other 1.4.x versions are also affected using similar cookies.

Exploits (3)

exploitdb WORKING POC VERIFIED
by RST/GHC · phpwebappsphp
https://www.exploit-db.com/exploits/4961

This exploit targets a SQL injection vulnerability in Coppermine Photo Gallery (CPG) 1.4.10 via cookie manipulation. It uses blind SQL injection to extract admin credentials by leveraging the 'album' parameter and serialized cookie data.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Coppermine Photo Gallery 1.4.10
No auth needed
Prerequisites: Target must be running Coppermine Photo Gallery 1.4.10 · PHP must be installed on the attacker's machine
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by bazik · phpwebappsphp
https://www.exploit-db.com/exploits/4950

This exploit targets a SQL injection vulnerability in Coppermine Gallery 1.4.10, leveraging deserialization and cookie manipulation to write a PHP web shell to the target system. It automates the process of retrieving necessary paths and prefixes before executing the payload.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Coppermine Gallery 1.4.10
No auth needed
Prerequisites: Target must be running Coppermine Gallery 1.4.10 · Album ID must be known or guessable
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by s0cratex · phpwebappsphp
https://www.exploit-db.com/exploits/3371

This exploit leverages a blind SQL injection vulnerability in Coppermine Photo Gallery 1.3.x via the 'cpg131_fav' cookie parameter. It extracts user credentials by brute-forcing each character of the username and password through conditional SQL queries.

Classification
Working Poc 95%
Attack Type
Sqli
Complexity
Moderate
Reliability
Reliable
Target: Coppermine Photo Gallery 1.3.x
No auth needed
Prerequisites: Target must have Coppermine Photo Gallery 1.3.x installed · The 'favpics' album must be accessible · The attacker must know the user_id (default is 1)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (10)

Core 10
Core References
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/461158/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/32688
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/2297
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/22709
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/39806
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/3371
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/4950
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/27372
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/4961
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/33133

Scores

EPSS 0.0213
EPSS Percentile 79.5%

Details

Status published
Products (4)
coppermine/coppermine_photo_gallery 1.3
coppermine/coppermine_photo_gallery 1.3.2
coppermine/coppermine_photo_gallery 1.3.3
coppermine/coppermine_photo_gallery 1.3.4
Published Feb 26, 2007
Tracked Since Feb 18, 2026