Coppermine Gallery Remote Code Execution Vulnerability

A remote code execution vulnerability exists in Coppermine Gallery version 1.6.25. This issue allows authenticated attackers to upload malicious PHP files via the plugin manager. Exploitation involves uploading a zipped PHP file containing system commands to the plugin directory, which can then be executed by accessing the uploaded plugin script.

Impact

Exploitation of this vulnerability allows for arbitrary code execution on the server where Coppermine Gallery is hosted.

Reproduction

To reproduce this vulnerability, log into an account with access to the plugin manager. Navigate to the plugin management page and upload a zip file containing a PHP script. The PHP script can include commands to be executed on the server. After uploading the zip file, access the PHP script through the web server to execute the embedded commands.