CVE-2008-3486

Coppermine Photo Gallery <1.4.18 - Path Traversal

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-3486. PoCs published by EgiX.

AI-analyzed exploit summary This exploit leverages a Local File Inclusion (LFI) vulnerability in Coppermine Photo Gallery <= 1.4.18, allowing remote code execution by manipulating the USER['lang'] cookie parameter to include arbitrary local files. The exploit includes a full interactive shell for post-exploitation.

Description

Directory traversal vulnerability in the user_get_profile function in include/functions.inc.php in Coppermine Photo Gallery (CPG) 1.4.18 and earlier, when the charset is utf-8, allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang part of serialized data in an _data cookie.

Exploits (1)

exploitdb WORKING POC VERIFIED

by EgiX · phpwebappsphp

https://www.exploit-db.com/exploits/6178

View Code ZIP pw:eip

This exploit leverages a Local File Inclusion (LFI) vulnerability in Coppermine Photo Gallery <= 1.4.18, allowing remote code execution by manipulating the USER['lang'] cookie parameter to include arbitrary local files. The exploit includes a full interactive shell for post-exploitation.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Coppermine Photo Gallery <= 1.4.18

No auth needed

Prerequisites: Target must have Coppermine Photo Gallery <= 1.4.18 installed · Default charset must be set to 'utf-8' · Access to the target's web server logs for LFI

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 18, 2026 Full analysis →