Coppermine Photo Gallery@1.4.23 Security Vulnerabilities and Issues — Coppermine Photo Gallery@1.4.23 CVE List

Lucene search

Coppermine-galleryCoppermine Photo Gallery1.4.23

5 matches found

CVE•added 2012/09/04 8:55 p.m.•45 views

CVE-2012-1613

Cross-site scripting (XSS) vulnerability in edit_one_pic.php in Coppermine Photo Gallery before 1.5.20 allows remote authenticated users with certain privileges to inject arbitrary web script or HTML via the keywords parameter.

3.5CVSS5.3AI score0.01711EPSS

CVE•added 2012/09/04 8:55 p.m.•37 views

CVE-2012-1614

Coppermine Photo Gallery before 1.5.20 allows remote attackers to obtain sensitive information via (1) a direct request to plugins/visiblehookpoints/index.php, an invalid (2) page or (3) cat parameter to thumbnails.php, an invalid (4) page parameter to usermgr.php, or an invalid (5) newer_than or (...

5CVSS6.2AI score0.19004EPSS

CVE•added 2011/01/11 3:0 a.m.•32 views

CVE-2010-4693

Multiple cross-site scripting (XSS) vulnerabilities in Coppermine Photo Gallery 1.5.10 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) h and (2) t parameters to help.php, or (3) picfile_XXX parameter to searchnew.php.

4.3CVSS5.9AI score0.00374EPSS

CVE•added 2011/06/14 5:55 p.m.•31 views

CVE-2010-4667

Cross-site scripting (XSS) vulnerability in Coppermine Photo Gallery (CPG) before 1.4.27 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.8AI score0.00249EPSS

CVE•added 2011/06/14 5:55 p.m.•28 views

CVE-2011-2476

Cross-site scripting (XSS) vulnerability in Coppermine Photo Gallery (CPG) before 1.5.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different vulnerability than CVE-2010-4667.

4.3CVSS5.8AI score0.00287EPSS