Description

Cross-site scripting (XSS) vulnerability in the keywords manager (keywordmgr.php) in Coppermine Photo Gallery before 1.5.27 and 1.6.x before 1.6.01 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2014-4612

Related Vulnerabilities

WordPress Plugin WPFront User Role Editor Multiple Cross-Site Scripting Vulnerabilities (2.13)

LimeSurvey Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2021-44967)

WordPress Plugin Event Espresso Lite-Event Management and Registration System SQL Injection (3.1.37.12)

MySQL CVE-2018-3073 Vulnerability (CVE-2018-3073)

WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3383)

Severity

Medium

Classification

CVE-2014-4612 CWE-707 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Tags

Missing Update Known Vulnerabilities