What is the severity of CVE-2008-1840?

CVE-2008-1840 has a medium severity rating due to its potential for SQL injection.

How do I fix CVE-2008-1840?

To fix CVE-2008-1840, upgrade to Coppermine Photo Gallery version 1.4.17 or later.

Who is affected by CVE-2008-1840?

Remote authenticated users and user-assisted remote HTTP servers are affected by CVE-2008-1840.

What does CVE-2008-1840 exploit?

CVE-2008-1840 exploits SQL injection vulnerabilities in the upload.php file of affected versions of Coppermine Photo Gallery.

What versions of Coppermine Photo Gallery are vulnerable to CVE-2008-1840?

Coppermine Photo Gallery versions 1.4.16 and earlier are vulnerable to CVE-2008-1840.

Vulnerability/
CVE-2008-1840

medium

6.5

CWE

16/4/2008

7/8/2024

CVE-2008-1840: SQL Injection

First published: Wed Apr 16 2008(Updated: )

SQL injection vulnerability in upload.php in Coppermine Photo Gallery (CPG) 1.4.16 and earlier allows remote authenticated users or user-assisted remote HTTP servers to execute arbitrary SQL commands via the Content-Type HTTP response header provided by the HTTP server that is used for an upload.

Credit: cve@mitre.org cve@mitre.org

Affected Software	Affected Version	How to fix
Coppermine Coppermine Photo Gallery	=1.4.8
Coppermine Coppermine Photo Gallery	=1.4.11
Coppermine Coppermine Photo Gallery	=1.4.12
Coppermine Coppermine Photo Gallery	=1.4.13
Coppermine Coppermine Photo Gallery	=1.4
Coppermine Coppermine Photo Gallery	=1.4.7
Coppermine Coppermine Photo Gallery	=1.4.2
Coppermine Coppermine Photo Gallery	=1.4.5
Coppermine Coppermine Photo Gallery	=1.4.6
Coppermine Coppermine Photo Gallery	=1.4.9
Coppermine Coppermine Photo Gallery	=1.4.3
Coppermine Coppermine Photo Gallery	=1.4.4
Coppermine Coppermine Photo Gallery	=1.4.14
Coppermine Coppermine Photo Gallery	=1.4.10
Coppermine Coppermine Photo Gallery	=1.4.1
Coppermine Coppermine Photo Gallery	<=1.4.16

Remedy

http://sourceforge.net/project/shownotes.php?group_id=89658&release_id=592069

Remedy

http://www.securityfocus.com/bid/28766

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2008-1840?
CVE-2008-1840 has a medium severity rating due to its potential for SQL injection.
How do I fix CVE-2008-1840?
To fix CVE-2008-1840, upgrade to Coppermine Photo Gallery version 1.4.17 or later.
Who is affected by CVE-2008-1840?
Remote authenticated users and user-assisted remote HTTP servers are affected by CVE-2008-1840.
What does CVE-2008-1840 exploit?
CVE-2008-1840 exploits SQL injection vulnerabilities in the upload.php file of affected versions of Coppermine Photo Gallery.
What versions of Coppermine Photo Gallery are vulnerable to CVE-2008-1840?
Coppermine Photo Gallery versions 1.4.16 and earlier are vulnerable to CVE-2008-1840.

collector/nvd-historical
collector/nvd-index
collector/nvd-api
agent/author
agent/type
agent/softwarecombine
agent/remedy
collector/mitre-cve
source/MITRE
agent/weakness
agent/last-modified-date
agent/references
agent/severity
agent/tags
agent/description
agent/first-publish-date
agent/event
agent/source
vendor/coppermine
canonical/coppermine coppermine photo gallery
version/coppermine coppermine photo gallery/1.4.8
version/coppermine coppermine photo gallery/1.4.11
version/coppermine coppermine photo gallery/1.4.12
version/coppermine coppermine photo gallery/1.4.13
version/coppermine coppermine photo gallery/1.4
version/coppermine coppermine photo gallery/1.4.7
version/coppermine coppermine photo gallery/1.4.2
version/coppermine coppermine photo gallery/1.4.5
version/coppermine coppermine photo gallery/1.4.6
version/coppermine coppermine photo gallery/1.4.9
version/coppermine coppermine photo gallery/1.4.3
version/coppermine coppermine photo gallery/1.4.4
version/coppermine coppermine photo gallery/1.4.14
version/coppermine coppermine photo gallery/1.4.10
version/coppermine coppermine photo gallery/1.4.1
version/coppermine coppermine photo gallery/1.4.16

Frequently Asked Questions

What is the severity of CVE-2008-1840?
CVE-2008-1840 has a medium severity rating due to its potential for SQL injection.
How do I fix CVE-2008-1840?
To fix CVE-2008-1840, upgrade to Coppermine Photo Gallery version 1.4.17 or later.
Who is affected by CVE-2008-1840?
Remote authenticated users and user-assisted remote HTTP servers are affected by CVE-2008-1840.
What does CVE-2008-1840 exploit?
CVE-2008-1840 exploits SQL injection vulnerabilities in the upload.php file of affected versions of Coppermine Photo Gallery.
What versions of Coppermine Photo Gallery are vulnerable to CVE-2008-1840?
Coppermine Photo Gallery versions 1.4.16 and earlier are vulnerable to CVE-2008-1840.

CVE-2008-1840: SQL Injection

Remedy

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2008-1840?

How do I fix CVE-2008-1840?

Who is affected by CVE-2008-1840?

What does CVE-2008-1840 exploit?

What versions of Coppermine Photo Gallery are vulnerable to CVE-2008-1840?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2008-1840?

How do I fix CVE-2008-1840?

Who is affected by CVE-2008-1840?

What does CVE-2008-1840 exploit?

What versions of Coppermine Photo Gallery are vulnerable to CVE-2008-1840?