Description
Coppermine Photo Gallery (CPG) 1.4.14 allows remote attackers to obtain sensitive information via a direct request to include/slideshow.inc.php, which leaks the installation path in an error message.
References (4)
Core 4
Core References
Exploit x_refsource_misc
http://www.waraxe.us/advisory-66.html
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/487351/100/200/threaded
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id?1019285
Patch, Vendor Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/0367
Scores
EPSS
0.0134
EPSS Percentile
67.9%
Details
CWE
CWE-200
Status
published
Products (1)
coppermine-gallery/coppermine_photo_gallery
1.4.14
Published
Sep 09, 2009
Tracked Since
Feb 18, 2026