Description

Cross-site scripting (XSS) vulnerability in Coppermine Photo Gallery (CPG) before 1.5.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2010-4667.

Remediation

References

CVE-2011-2476

Related Vulnerabilities

WordPress Plugin TwitterCart Security Bypass (2.0)

WordPress Plugin Easy Digital Downloads-htaccess Editor Cross-Site Scripting (1.0.0)

MediaWiki CVE-2019-12467 Vulnerability (CVE-2019-12467)

WordPress Plugin Download Monitor SQL Injection (4.4.4)

WordPress Plugin BulletProof Security Cross-Site Scripting (.47)

Severity

Medium

Classification

CVE-2011-2476 CWE-707

Tags

Missing Update Known Vulnerabilities