← CVECheck
HomeVulnerabilities

CVE-2004-1989 — HIGH severity vulnerability (PHP remote file inclusion vulnerability in theme.php in Copp)

PHP remote file inclusion vulnerability in theme.php in Coppermine Photo Gallery 1.2.2b allows remote attackers to execute arbitrary PHP code by modifying the THEME_DIR parameter to reference a URL on a remote web server that contains user_list_info_box.inc.

CVE IDCVE-2004-1989
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2004-04-30
Last modified2026-04-16
DescriptionPHP remote file inclusion vulnerability in theme.php in Coppermine Photo Gallery 1.2.2b allows remote attackers to execute arbitrary PHP code by modifying the THEME_DIR parameter to reference a URL on a remote web server that contains user_list_info_box.inc.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →