CVE-2008-3486

Name of the Vulnerable Software and Affected Versions Coppermine Photo Gallery versions 1.4.18 and earlier

Description The issue allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang part of serialized data in an data cookie, specifically when the charset is utf-8. This is related to a directory traversal vulnerability in the user get profile function in include/functions.inc.php.

Recommendations For Coppermine Photo Gallery versions 1.4.18 and earlier, as a temporary workaround, consider restricting access to the user get profile function in include/functions.inc.php until a patch is available. Avoid using the data cookie with serialized data containing the lang part until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.