Vulnerability Description
SQL injection vulnerability in picmgr.php in Coppermine Photo Gallery 1.4.9 allows remote attackers to execute arbitrary SQL commands via the aid parameter.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Coppermine | Coppermine Photo Gallery | 1.4.9 |
References
- http://coppermine-gallery.net/forum/index.php?topic=37895.0Patch
- http://secunia.com/advisories/22625PatchVendor Advisory
- http://www.securityfocus.com/bid/20774Exploit
- http://www.vupen.com/english/advisories/2006/4226
- https://www.exploit-db.com/exploits/2660
- http://coppermine-gallery.net/forum/index.php?topic=37895.0Patch
- http://secunia.com/advisories/22625PatchVendor Advisory
- http://www.securityfocus.com/bid/20774Exploit
- http://www.vupen.com/english/advisories/2006/4226
- https://www.exploit-db.com/exploits/2660
FAQ
What is CVE-2006-5622?
CVE-2006-5622 is a vulnerability with a CVSS score of 7.5 (HIGH). SQL injection vulnerability in picmgr.php in Coppermine Photo Gallery 1.4.9 allows remote attackers to execute arbitrary SQL commands via the aid parameter.
How severe is CVE-2006-5622?
CVE-2006-5622 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-5622?
Check the references section above for vendor advisories and patch information. Affected products include: Coppermine Coppermine Photo Gallery.