>> Coppermine Photo Gallery "relocate_server.php" Information Disclosure
Title : Coppermine Photo Gallery "relocate_server.php" Information Disclosure VUPEN ID : VUPEN/ADV-2005-2698 CVE ID : CVE-2005-3979
Rated as : Moderate Risk
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2005-12-02
Technical Description
A vulnerability has been identified in Coppermine Photo Gallery, which could be exploited by remote attackers to gain knowledge of sensitive information. This flaw is due to a design error where the "relocate_server.php" script, stored in the webroot directory, is publicly accessible, which could be exploited by attackers to the contents of the "config.inc.php" file.
