Description

Cross-site scripting (XSS) vulnerability in edit_one_pic.php in Coppermine Photo Gallery before 1.5.20 allows remote authenticated users with certain privileges to inject arbitrary web script or HTML via the keywords parameter.

Remediation

References

CVE-2012-1613

Related Vulnerabilities

Apache Tomcat Session Fixation Vulnerability (CVE-2019-17563)

Mailman Improper Restriction of Excessive Authentication Attempts Vulnerability (CVE-2021-42096)

phpList Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2020-35708)

WordPress Plugin PayPal Digital Goods powered by Cleeng Cross-Site Scripting (2.2.13)

WordPress Plugin EWWW Image Optimizer Cloud Cross-Site Scripting (2.0.1)

Severity

Low

Classification

CVE-2012-1613 CWE-707

Tags

Missing Update Known Vulnerabilities