Description
Multiple cross-site scripting (XSS) vulnerabilities in Coppermine Photo Gallery 1.5.10 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) h and (2) t parameters to help.php, or (3) picfile_XXX parameter to searchnew.php.
Remediation
References
Related Vulnerabilities
Liferay Portal Inefficient Regular Expression Complexity Vulnerability (CVE-2022-42124)
PostgreSQL Other Vulnerability (CVE-2006-2314)
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-18033)
WordPress Plugin UpdraftPlus WordPress Backup Cross-Site Scripting (1.13.4)
Atlassian Jira CVE-2020-14165 Vulnerability (CVE-2020-14165)