3 matches found
CVE-2005-2676
Cross-site scripting XSS vulnerability in displayimage.php in Coppermine Photo Gallery before 1.3.4 allows remote attackers to inject arbitrary web script or HTML via EXIF data...
CVE-2005-2676
Cross-site scripting XSS vulnerability in displayimage.php in Coppermine Photo Gallery before 1.3.4 allows remote attackers to inject arbitrary web script or HTML via EXIF data...
CVE-2005-2676
The CVE-2005-2676 entry concerns Coppermine Photo Gallery prior to version 1.3.4, where displayimage.php is vulnerable to cross-site scripting via crafted EXIF data. The vulnerability allows an attacker-supplied EXIF payload to be reflected into the HTML/JS context, enabling arbitrary script exec...