Description
Cross-site scripting (XSS) vulnerability in Zenphoto before 1.4.3 allows remote attackers to inject arbitrary web script or HTML by triggering improper interaction with an unspecified library.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2015-0457 Vulnerability (CVE-2015-0457)
IBM RTC Inadequate Encryption Strength Vulnerability (CVE-2020-4965)
WordPress Plugin Gravity Forms Constant Contact Cross-Site Scripting (1.0.5)
WordPress Plugin Membership Simplified Multiple SQL Injection Vulnerabilities (1.58)
IBM WebSEAL Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1474)