Description

Cross-site scripting (XSS) vulnerability in Coppermine Photo Gallery (CPG) before 1.5.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2010-4667.

Remediation

References

CVE-2011-2476

Related Vulnerabilities

WordPress Plugin CP Contact Form with PayPal Cross-Site Scripting (1.2.97)

Atlassian Jira Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2021-41305)

WordPress Plugin Pinpoint Booking System-#1 WordPress Booking SQL Injection (1.2)

MathJax Inefficient Regular Expression Complexity Vulnerability (CVE-2023-39663)

WordPress Plugin amtyThumb Cross-Site Scripting (4.1.2)

Severity

Medium

Classification

CVE-2011-2476 CWE-707

Tags

Missing Update Known Vulnerabilities