CVE-2008-3481

Name of the Vulnerable Software and Affected Versions Coppermine Photo Gallery versions 1.4.18 and earlier

Description The issue allows remote attackers to obtain sensitive information via a direct request to 'themes/sample/theme.php', which reveals the installation path in an error message.

Recommendations For Coppermine Photo Gallery versions 1.4.18 and earlier, consider restricting access to the 'themes/sample/theme.php' file until a patch is available. As a temporary workaround, avoid using the vulnerable file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.