CVE-2008-7187
NONE
Published Sep 9, 200916y ago · Modified Jun 16, 20262w ago
Published Sep 9, 2009 16y ago
Last Modified Jun 16, 2026 2w ago
Description
Coppermine Photo Gallery (CPG) 1.4.14 allows remote attackers to obtain sensitive information via a direct request to include/slideshow.inc.php, which leaks the installation path in an error message.
Threat Intelligence
No active exploitation signals — not in CISA KEV and no EPSS score yet.
Exploit & Patch Status
Public Exploit Known
Patch Available
Weaknesses 1
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor Information Exposure
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| coppermine-gallery | coppermine_photo_gallery | 1.4.14 | any |
References 4
- securityfocus.com http://www.securityfocus.com/archive/1/487351/100/200/threaded
- securitytracker.com http://www.securitytracker.com/id?1019285
- vupen.com http://www.vupen.com/english/advisories/2008/0367
- waraxe.us http://www.waraxe.us/advisory-66.html
Remediation
- vupen.com http://www.vupen.com/english/advisories/2008/0367