Lucene search

[email protected]NVD:CVE-2005-2676

HistoryAug 23, 2005 - 4:00 a.m.

CVE-2005-2676

2005-08-2304:00:00

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

65.2%

JSON

Cross-site scripting (XSS) vulnerability in displayimage.php in Coppermine Photo Gallery before 1.3.4 allows remote attackers to inject arbitrary web script or HTML via EXIF data.

Affected configurations

Nvd

Node

copperminecoppermine_photo_galleryMatch1.0_rc3

copperminecoppermine_photo_galleryMatch1.1_.0

copperminecoppermine_photo_galleryMatch1.1_beta_2

copperminecoppermine_photo_galleryMatch1.2

copperminecoppermine_photo_galleryMatch1.2.1

copperminecoppermine_photo_galleryMatch1.2.2_b

copperminecoppermine_photo_galleryMatch1.3

copperminecoppermine_photo_galleryMatch1.3.2

copperminecoppermine_photo_galleryMatch1.3.3

VendorProductVersionCPE
copperminecoppermine_photo_gallery1.0_rc3cpe:2.3:a:coppermine:coppermine_photo_gallery:1.0_rc3:*:*:*:*:*:*:*
copperminecoppermine_photo_gallery1.1_.0cpe:2.3:a:coppermine:coppermine_photo_gallery:1.1_.0:*:*:*:*:*:*:*
copperminecoppermine_photo_gallery1.1_beta_2cpe:2.3:a:coppermine:coppermine_photo_gallery:1.1_beta_2:*:*:*:*:*:*:*
copperminecoppermine_photo_gallery1.2cpe:2.3:a:coppermine:coppermine_photo_gallery:1.2:*:*:*:*:*:*:*
copperminecoppermine_photo_gallery1.2.1cpe:2.3:a:coppermine:coppermine_photo_gallery:1.2.1:*:*:*:*:*:*:*
copperminecoppermine_photo_gallery1.2.2_bcpe:2.3:a:coppermine:coppermine_photo_gallery:1.2.2_b:*:*:*:*:*:*:*
copperminecoppermine_photo_gallery1.3cpe:2.3:a:coppermine:coppermine_photo_gallery:1.3:*:*:*:*:*:*:*
copperminecoppermine_photo_gallery1.3.2cpe:2.3:a:coppermine:coppermine_photo_gallery:1.3.2:*:*:*:*:*:*:*
copperminecoppermine_photo_gallery1.3.3cpe:2.3:a:coppermine:coppermine_photo_gallery:1.3.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
coppermine	coppermine_photo_gallery	1.0_rc3	cpe:2.3:a:coppermine:coppermine_photo_gallery:1.0_rc3:::::::*
coppermine	coppermine_photo_gallery	1.1_.0	cpe:2.3:a:coppermine:coppermine_photo_gallery:1.1_.0:::::::*
coppermine	coppermine_photo_gallery	1.1_beta_2	cpe:2.3:a:coppermine:coppermine_photo_gallery:1.1_beta_2:::::::*
coppermine	coppermine_photo_gallery	1.2	cpe:2.3:a:coppermine:coppermine_photo_gallery:1.2:::::::*
coppermine	coppermine_photo_gallery	1.2.1	cpe:2.3:a:coppermine:coppermine_photo_gallery:1.2.1:::::::*
coppermine	coppermine_photo_gallery	1.2.2_b	cpe:2.3:a:coppermine:coppermine_photo_gallery:1.2.2_b:::::::*
coppermine	coppermine_photo_gallery	1.3	cpe:2.3:a:coppermine:coppermine_photo_gallery:1.3:::::::*
coppermine	coppermine_photo_gallery	1.3.2	cpe:2.3:a:coppermine:coppermine_photo_gallery:1.3.2:::::::*
coppermine	coppermine_photo_gallery	1.3.3	cpe:2.3:a:coppermine:coppermine_photo_gallery:1.3.3:::::::*

References

coppermine-gallery.net/forum/index.php?topic=20933.0

secunia.com/advisories/16499

securitytracker.com/id?1014799

www.securityfocus.com/bid/14625

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

65.2%

JSON

Related for NVD:CVE-2005-2676

cvelist1 nessus1 cve1