Suspicious file uploaded to gallery - Upgrade questions Suspicious file uploaded to gallery - Upgrade questions
 

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Main Menu

Suspicious file uploaded to gallery - Upgrade questions

Started by mlm2005, July 09, 2006, 12:39:11 AM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

mlm2005

July 09, 2006, 12:39:11 AM
Hello,

I have Coppermine Version 1.3.2 installed.  I have placed it off-line because a few months ago I noticed a "file" in one of the users galleries.  It looked suspicious and since I could not edit the user at all (it did not appear in the drop down list) I decided to take the gallery off line until I had time to find out what was going on.  I had read briefly about the upgrade but then got busy with some personal matters and could not devote the time to upgrade.

Does this "file" sound suspicious?  Is this part of the vulnerability?  Are there any steps I should take before attempting to upgrade?  Can I upgrade from 1.3.2 to the most recent version.

As always, thanks for your assistance!

Nibbler

#1
July 09, 2006, 12:43:03 AM
Update straight to the latest stable version, currently 1.4.8. 1.3.2 is ancient and has numerous security issues. Setting the gallery offline will not prevent any problems if you have already been compromised. Post a link once you have updated.
Print
Go Up Pages1
User actions