Description
Cross-site scripting (XSS) vulnerability in contact.php in Coppermine Photo Gallery before 1.5.36 allows remote authenticated users to inject arbitrary web script or HTML via the referer parameter.
Remediation
References
Related Vulnerabilities
Apache HTTP Server Out-of-bounds Write Vulnerability (CVE-2006-20001)
WordPress Plugin Visitor Maps and Who's Online Cross-Site Scripting (1.5.8.6)
Sqlite Missing Release of Memory after Effective Lifetime Vulnerability (CVE-2021-45346)
WordPress 2.8.4 Denial of Service Vulnerability (0.6.2 - 2.8.4)
WordPress Plugin Easy Updates Manager Privilege Escalation (8.0.4)