| VID |
21378 |
| Severity |
20 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The Coppermine Gallery, according to its version number, has a Voting Restriction Failure Vulnerability. Coppermine Photo Gallery, developed by Gregory Demar, is a freely available PHP-based image gallery script that uses a MySQL backend database. Coppermine Photo Gallery 1.3.2 and earlier contain a design error that may allow users to cast multiple votes for a picture.
* Note: This check solely relied on the version number of the remote Coppermine Gallery to assess this vulnerability, so this might be a false positive.
* Platforms Affected:
Gregory Demar, Coppermine Photo Gallery 1.3.2 and earlier
Microsoft Windows Any version
Unix Any version
Linux Any version |
| Recommendation |
Upgrade to the new version of Coppermine Photo Gallery (1.3.3 or later) from the Coppermine Photo Gallery Home Page at http://coppermine-gallery.net/ |
| Related URL |
(CVE) |
| Related URL |
11485 (SecurityFocus) |
| Related URL |
(ISS) |
|
