Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Coppermine Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2008-3481 - Vulnerability Database
Coppermine

Coppermine Improper Control of Generation of Code (Code Injection) Vulnerability - CVE-2008-3481

High
Reference: CVE-2008-3481
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2008-3481
Title: Coppermine Improper Control of Generation of Code (Code Injection) Vulnerability
Overview:

themes/sample/theme.php in Coppermine Photo Gallery (CPG) 1.4.18 and earlier allows remote attackers to obtain sensitive information via a direct request which reveals the installation path in an error message.